[VIM] http://www.attrition.org/pipermail/vim/2006-June/000913.html

Support Service krustevs at googlemail.com
Sat Jul 1 08:32:22 EDT 2006

Hi Steven,

Yes i had spoken about hijacking user session, thats wuy in blog i
spoke about 2 examples how it can be used...
in on of them i told that there must only pput a hyperlink , cauz
Hostflow do not use IP filter and it will give as reffer url full
users session , without any XSS.

More information about the VIM mailing list