MOSEB-10: Vulnerabilities at

20:49 10.06.2007

Next participant of the project is Ask search engine. It is one of the popular search engines.

The vulnerabilities are in Ask web search. These Cross-Site Scripting holes I found 10.05.2007.


The vulnerabilities are in qid and jss parameters:

Also page with html injection hole has PR5. So black seo guys will be happy.

Moral: searching in the web can be dangerous.


I prepared others holes at So wait for today’s bonus post ;-) .

Одна відповідь на “MOSEB-10: Vulnerabilities at”

  1. Silentz каже:

    Ahh Jeeves, Jeeves, Jeeves…where did you go wrong? Good stuff mate!

Leave a Reply

You must be logged in to post a comment.