Critical XSS vulnerability in YouthDreams.Net

Home / Hacking, News, Security / Critical XSS vulnerability in YouthDreams.Net

September 13, 2010 PlanetCreator 0 Comments 0 tags

Security Researcher $@T0R! reported another XSS vulnerability in http://www.youthdreams.net

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy.

Vul: – http://youthdreams.net

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Hacking a Windows 2000 system through IPC$

1: Scanning for open Win2k systems2: Connecting to the IPC$3: Connecting and using Computer Management.4. Disable NTLM5: Starting the Telnet service6: Creating user accounts and adding them to a group7:

Wanted: Windows Hackers

Microsoft has said it wants to get more security researchers into Redmond to demonstrate flaws in its software, and it wants them to come back every six months. In March,

DNS disaster: first attacks reported

The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Dan Kaminsky (Credit: Kaminsky’s blog) The existence of the Domain Name

[webapps] Pluck 4.7.7-dev2 - PHP Code Execution
on December 8, 2025 at 12:00 am
Pluck 4.7.7-dev2 - PHP Code Execution
[webapps] phpIPAM 1.4 - SQL-Injection
on December 3, 2025 at 12:00 am
phpIPAM 1.4 - SQL-Injection
[webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
on December 3, 2025 at 12:00 am
MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
on December 3, 2025 at 12:00 am
phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
[webapps] Django 5.1.13 - SQL Injection
on December 3, 2025 at 12:00 am
Django 5.1.13 - SQL Injection