The Web Security Mailing List (2007 July)

• Thread Index

• [WEB SECURITY] The Top 5 most Popular Web2.0 Services Hackers Cannot live Without
  • From: pdp (architect)
• [WEB SECURITY] Security on AIR: Local file access through JavaScript
  • From: fukami
• [WEB SECURITY] Last Week of Reflection - Dinis Cruz
  • From: Anurag Agarwal
• [WEB SECURITY] Attacking Password Recovery Facilities
  • From: pdp (architect)
• [WEB SECURITY] Anti-DNS Pinning and Java Applets
  • From: David Byrne
• [WEB SECURITY] XSSDB Elite (Web2.0 Engineering)
  • From: pdp (architect)
• [WEB SECURITY] Session hijacking protection
  • From: frederic . lebeau
• [WEB SECURITY] Secure Programming with Static Analysis
  • From: Jacob West
• AW: [WEB SECURITY] Session hijacking protection
  • From: Gabriel Kälin
• [WEB SECURITY] XWW - cross webmail Worn - PoC
  • From: Rosario Valotta
• Re: [WEB SECURITY] XWW - cross webmail Worn - PoC
  • From: Travis Altman
• RE: [WEB SECURITY] Session hijacking protection
  • From: Boaz Shunami
• [WEB SECURITY] <img src=> aint working
  • From: Esteban RibiÄiÄ
• Re: [WEB SECURITY] Attacking Password Recovery Facilities
  • From: Esteban RibiÄiÄ
• [WEB SECURITY] The new dawn of filter evasion
  • From: pdp (architect)
• [WEB SECURITY] [MSA01110707] Flash Player/Plugin Video file parsing Remote Code Execution
  • From: Minded Security Research Labs
• [WEB SECURITY] projections - another Web2.0/Security projection
  • From: pdp (architect)
• [WEB SECURITY] JavaScript Spider - Yahoo Site Explorer Spider
  • From: pdp (architect)
• [WEB SECURITY] Official release of SQL Power Injector 1.2
  • From: Francois Larouche
• [WEB SECURITY] Client-side JavaScript XSS Scanner - runs straight from your browser
  • From: pdp (architect)
• [WEB SECURITY] SPI Labs finds flaws with Avoid iPhone's web dial
  • From: Billy Hoffman
• [WEB SECURITY] HDIV: Struts 2 Security Plugin
  • From: Gorka Vicente
• [WEB SECURITY] [CVE-2007-3816][Advisory] JWIG Context-Dependent Template Calling Dos
  • From: Aditya K Sood
• Re: [WEB SECURITY] [CVE-2007-3816][Advisory] JWIG Context-Dependent Template Calling Dos
  • From: Bubba Gump
• Re: [WEB SECURITY] [CVE-2007-3816][Advisory] JWIG Context-Dependent Template Calling Dos
  • From: Aditya K Sood
• [WEB SECURITY] digital stalking, Google SearchHistory RSS Interface
  • From: pdp (architect)
• Re: [WEB SECURITY] [CVE-2007-3816][Advisory] JWIG Context-Dependent Template Calling Dos
  • From: Pranay Kanwar
• [WEB SECURITY] new version of XSSDB
  • From: pdp (architect)
• Re: [WEB SECURITY] digital stalking, Google SearchHistory RSS Interface
  • From: Greenarrow 1
• Re: [WEB SECURITY] digital stalking, Google SearchHistory RSS Interface
  • From: pdp (architect)
• Re: [WEB SECURITY] digital stalking, Google SearchHistory RSS Interface
  • From: pdp (architect)
• [WEB SECURITY] Am I missing anything ?
  • From: Deeþàn Chakravarthÿ
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: bugtraq
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: Valdis . Kletnieks
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: Trancer
• [WEB SECURITY] RE: [Full-disclosure] Am I missing anything ?
  • From: J. Patterson Wicks
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: David Byrne
• Re: [WEB SECURITY] Am I missing anything ?
  • From: kwestin
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: Steven Adair
• [WEB SECURITY] Re: [Full-disclosure] Am I missing anything ?
  • From: Simon Smith
• RE: [WEB SECURITY] <img src=> aint working
  • From: Matt Fisher
• [WEB SECURITY] [SecNiche Security] WAZ (v 1.0) : Windows Anti Zomb Killer Released
  • From: Aditya K Sood
• [WEB SECURITY] Persistent HTML Injection
  • From: Yiannis Pavlosoglou
• [WEB SECURITY] attribute based XSS
  • From: Brian Eaton
• Re: [WEB SECURITY] attribute based XSS
  • From: Stefan Esser
• Re: [WEB SECURITY] attribute based XSS
  • From: Arian J. Evans
• [WEB SECURITY] Blackhat presenter denied entry to US
  • From: bugtraq
• [WEB SECURITY] False Positives with .NET's Request Validation?
  • From: David Felio
• [WEB SECURITY] List slowdown during blackhat
  • From: robert
• Re: [WEB SECURITY] False Positives with .NET's Request Validation?
  • From: Arian J. Evans
• Re: [WEB SECURITY] False Positives with .NET's Request Validation?
  • From: James Landis
• [WEB SECURITY] *****SPAM***** New Wordpress 2.2.1 Vulnerabilities and the First Weblog XSS Worm
  • From: mybeni websecurity