Cordobo » XSS http://cordobo.com Weblog of Andreas Jacob on Webdesign and CSS Mon, 12 Jul 2010 21:56:38 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Youtube XSS vulnerability? http://cordobo.com/234-youtube-xss-vulnerability/ http://cordobo.com/234-youtube-xss-vulnerability/#comments Sat, 03 Feb 2007 18:29:02 +0000 Andreas Jacob http://smartsite.de/c/cordobo_com/?p=234 I stumbled upon §øüLêÿ’s blog and found this entry titled XSS in youtube.com!!! from december 2006. Try the following link and you’ll get a JavaScript alert on YouTube.com. As I am not a professional, I don’t know if it’s a real XSS vulnerability in YouTube’s website. Maybe you can do even more, I don’t know. And maybe it’s nothing and doesn’t need to be fixed.

Youtube XSS
(opens in a new window, JavaScript needs to be enabled)

Thats what you get:

Youtube XSS vulnerability

via souley.org

]]> http://cordobo.com/234-youtube-xss-vulnerability/feed/ 2