Threat Level: green Handler on Duty: Didier Stevens

SANS ISC Diaries by Keyword


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
DateAuthorTitle

CROSS SITE SCRIPTING

2013-02-04Russ McReeAn expose of a recent SANS GIAC XSS vulnerability
2013-01-25Johannes UllrichVulnerability Scans via Search Engines (Request for Logs)
2011-08-24Rob VandenBrinkCitrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971

CROSS

2014-08-09/a>Adrien de BeaupreComplete application ownage via Multi-POST XSRF
2013-02-11/a>John BambenekIs This Chinese Registrar Really Trying to XSS Me?
2013-02-04/a>Russ McReeAn expose of a recent SANS GIAC XSS vulnerability
2013-01-25/a>Johannes UllrichVulnerability Scans via Search Engines (Request for Logs)
2011-08-24/a>Rob VandenBrinkCitrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971
2009-07-17/a>John BambenekCross-Platform, Cross-Browser DoS Vulnerability

SITE

2014-08-09/a>Adrien de BeaupreComplete application ownage via Multi-POST XSRF
2014-06-11/a>Daniel WesemannGimme your keys!
2013-02-22/a>Johannes UllrichWhen web sites go bad: bible . org compromise
2013-02-11/a>John BambenekIs This Chinese Registrar Really Trying to XSS Me?
2013-02-04/a>Russ McReeAn expose of a recent SANS GIAC XSS vulnerability
2013-01-25/a>Johannes UllrichVulnerability Scans via Search Engines (Request for Logs)
2011-08-24/a>Rob VandenBrinkCitrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971
2010-08-13/a>Tom ListonThe Strange Case of Doctor Jekyll and Mr. ED
2010-04-26/a>Raul SilesVulnerable Sites Database
2009-08-18/a>Deborah HaleDomain tcpdump.org unavailable
2009-08-18/a>Deborah HaleWebsite compromises - what's happening?
2009-05-27/a>donald smithHost file black lists
2009-05-05/a>Bojan ZdrnjaEvery dot matters
2008-08-02/a>Maarten Van HorenbeeckIssues affecting sites using Sitemeter [resolved]
2008-06-07/a>Jim ClausingFollowup to 'How do you monitor your website?'
2008-04-24/a>donald smithHundreds of thousands of SQL injections

SCRIPTING

2013-07-01/a>Manuel Humberto Santander PelaezUsing nmap scripts to enhance vulnerability asessment results
2013-02-11/a>John BambenekIs This Chinese Registrar Really Trying to XSS Me?
2013-02-04/a>Russ McReeAn expose of a recent SANS GIAC XSS vulnerability
2013-01-25/a>Johannes UllrichVulnerability Scans via Search Engines (Request for Logs)
2012-01-12/a>Rob VandenBrinkStuff I Learned Scripting - Fun with STDERR
2011-11-10/a>Rob VandenBrinkStuff I Learned Scripting - - Parsing XML in a One-Liner
2011-08-24/a>Rob VandenBrinkCitrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971