Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label BlitzSec. Show all posts

Dell and TBS.com website vulnerable to Cross site scripting


BlitzSec, a grey hat hackers group discovered Cross Site Scripting vulnerability in Dell and TBS.com websites. 

The Signup form in email subscription center page of the Dell website is found to be vulnerable to XSS attack. 

The search box of TBS website is found to be vulnerable XSS attack.  "TBS you need to implement XSS filters, i was surprised to find this even after TeamHav0k's XSS find on your site, thought you would have learned. Patch up XSS across your whole site, not just the affected page brought to your attention." Hacker said in the pastebin.


Amazon and WHO vulnerable to Cross site scripting, found by BlitzSec

 A Hacker group called BlitzSec has discovered Cross site scripting vulnerability int six high Profile websites including Amazon and World Health organization(WHO).
    
"Felt like getting some of our finds out there in the open.  The two most noteable finds in this release are XSS's in the main site of Amazon (Amazon.com) and a sub-domain of The World Health Organization (apps.who.int).  Expect more! :)" Hacker said in the pastebin release.

 
 Amazon, WHO.int, KENTUCKY WESLEYAN COLLEGE,Southeastern Illinois College,Lyrics.com and Music.com websites are found to be vulnerable to XSS attack.