4tt4ck3r Discovers XSS Vulnerability for London University

After some time we are pleased to see return 4tt4ck3r, who has had many successes with XSS vulnerabilities in the past and if God helps hopefully also in the future. The latest vulnerability discovered by 4tt4ck3r is on the website of UCL which is a university in London. By running the script “”/>”certi”<script>alert(“4TT4CK3R”)</script>”/certi” through search functionality on this university website, we can generate a message box, and also by running similar script “”/>”certi”<script>alert(document.cookie)</script>”/certi” we can get the cookie.

Screenshot to prove this are here:

http://uupload.ir/files/hxyn_1-1.png

http://uupload.ir/files/ufgl_2-2.png

Leave a Reply

Your email address will not be published. Required fields are marked *