Errata:

Black Hat Schedule website XSS vulnerability

2010/08/03

da d3v1l

http://security-sh3ll.blogspot.com/2010/08/black-hat-schedule-website-xss.html

XSS,HTML injection and redirect on signup and password-reset module

for proof of concept try to signup using in place where asks for username and password some XSS string

http://blackhat2010.sched.org and http://sched.blackhat.com

main page

ATTRITION

feedback