tudor13mn13 Posted January 12, 2014 Report Share Posted January 12, 2014 (edited) Acum cateva saptamani, am gasit o vulnerabilitate ca sa zic asa , mai degraba un bug.Te foloseai de un Email Sender HTML , trimiteai victimei un mail cu un cod html, victima cand intra in inbox nu mai putea vedea nici-un mail, nu mergeau butoanele , si nu se incarca css-ul.Am zis "Ok", hai sa o raportez poate fac ceva banisori, le trimit mail, frumos imi spun ei Ca o sa o rezolve in 14 zile si ca o sa imi trimita mail.Au trecut mai mult de 14 zile si nimic.Prin concluzie cei de la yahoo sunt niste prosti disperati de bani.. Edited January 12, 2014 by tudor13mn13 Quote Link to comment Share on other sites More sharing options...
dekeeu Posted January 12, 2014 Report Share Posted January 12, 2014 Prin concluzie unde e vulnerabilitatea ? Quote Link to comment Share on other sites More sharing options...
Active Members dancezar Posted January 12, 2014 Active Members Report Share Posted January 12, 2014 In concluzie sunt foarte depasiti de situatie.Am un xss persistent raportat in septembrie dar nici acuma nu au reparat ci doar au blocat intrarile din baza de date.Am mai raportat si un FPD care l-au reparat repede si m-au recut pe HOF dar reward nu pentru ca era in .net .Trebuie sa ai putina rabdare atat.Defapt putin mai mult:)) Quote Link to comment Share on other sites More sharing options...
aelius Posted January 12, 2014 Report Share Posted January 12, 2014 Deci, trimiteai email html cu sms sender? Interesant dude Quote Link to comment Share on other sites More sharing options...
tudor13mn13 Posted January 12, 2014 Author Report Share Posted January 12, 2014 Deci, trimiteai email html cu sms sender? Interesant dudeE-mail....Ma grabeam. Quote Link to comment Share on other sites More sharing options...
