[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: [FD] XSS on public PGP servers
From: John Strander <tech.pain () yandex ! com>
Date: 2016-10-23 5:14:14
Message-ID: 4307151477199654 () web34j ! yandex ! ru
[Download RAW message or body]
[Attachment #2 (unknown)]
<div>This isn't a top story news flash or anything, but I was doing a search for someone's PGP \
key and dI iscovered a bunch of XSS on several of the public key servers:</div><div> \
</div><div><a href="http://pgp.mit.edu/pks/lookup?search=ckers&op=index">http://pgp.mit.edu/pks/lookup?search=ckers&op=index</a></div><div> \
</div><div><a href="https://sks-keyservers.net/pks/lookup?op=vindex&search=ckers">https://sks-keyservers.net/pks/lookup?op=vindex&search=ckers</a></div><div> \
</div><div> </div>
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic