A hacker from Intra, -Zer0Freak-, has found countless XSS vulnerabilities on high profile websites i.e. Companies, News, Products, Famous sites and many more.
-Zer0Freak- didn’t take much time finding them; he was to have said that he found these vulnerabilities in less than 30 min. However, he admitted that he took a while trying to figure out which site to XSS.
High profiles sites including EA games, NASA, ABC, LG,Adidas,Harvard University and more high Profile sites are found to be vulnerable to XSS attack. Hacker list of vulnerable sites in pastebin with screenshot:
http://pastebin.com/Np3LGY6Z
Hacker claimed that he did this operation for Educational XSS and malicious activity used for training. Some of them are patched, but most are still vuln
Hacker published the full disclosure in pasteit website with password protection and claimed only members who willing to learn XSS can have it.
Full Disclosure Can be found here
http://pasteit.com/16958
-Zer0Freak- didn’t take much time finding them; he was to have said that he found these vulnerabilities in less than 30 min. However, he admitted that he took a while trying to figure out which site to XSS.
Cross Site Scripting(XSS) is a very harmful method of hacking websites, in fact it’s the 2nd most malicious act against hacking websites.
High profiles sites including EA games, NASA, ABC, LG,Adidas,Harvard University and more high Profile sites are found to be vulnerable to XSS attack. Hacker list of vulnerable sites in pastebin with screenshot:
http://pastebin.com/Np3LGY6Z
Hacker claimed that he did this operation for Educational XSS and malicious activity used for training. Some of them are patched, but most are still vuln
Hacker published the full disclosure in pasteit website with password protection and claimed only members who willing to learn XSS can have it.
Full Disclosure Can be found here
http://pasteit.com/16958