moz
House Of Hacked Hackers.
Submitted by secgeeks on Thu, 08/05/2008 - 13:45.17
vote
Ah well, pun intended. :)
Looks like Ning.com is vulnerable to XSS, and quite a bit at it. I signed up on PDP's new social network called House of Hackers. It seems that Ning let us edit the stylesheet, obviously they never heard of CSS XSS moz-binding attacks otherwise this would not work. These XSS attacks can be launched from a stylesheet.
http://houseofhackers.ning.com/profile/0x0000000 read more »
