[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    [FD] XSS on public PGP servers
From:       John Strander <tech.pain () yandex ! com>
Date:       2016-10-23 5:14:14
Message-ID: 4307151477199654 () web34j ! yandex ! ru
[Download RAW message or body]

[Attachment #2 (unknown)]

<div>This isn't a top story news flash or anything, but I was doing a search for someone's PGP \
key and dI iscovered a bunch of XSS on several of the public key servers:</div><div> \
</div><div><a href="http://pgp.mit.edu/pks/lookup?search=ckers&amp;op=index">http://pgp.mit.edu/pks/lookup?search=ckers&amp;op=index</a></div><div> \
</div><div><a href="https://sks-keyservers.net/pks/lookup?op=vindex&amp;search=ckers">https://sks-keyservers.net/pks/lookup?op=vindex&amp;search=ckers</a></div><div> \
</div><div> </div>



_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic