Friday, July 9, 2010

VeriSign website XSS vulnerability


Cross-site scripting,html injection and redirect.

VeriSign is the trusted provider of Internet infrastructure services for the networked world. The ability to know and trust the parties with which you do business and communicate has become critical in the networked world.

Proof of concept

https://forms.verisign.com/websurveys/servlet/ActionMultiplexer?Action_ID=XSS

redirect and html injection poc

No comments: