05 February 2010

In the interest of full disclosure

Over the next couple of days I will be publicly releasing the information and screenshots of some XSS vulnerable sites that I identified and notified at the beginning of January. Some of these have now been fixed, and others have ignored my e-mails and LinkedIn contact attempts. So I will be naming, shaming and sharing all the gory details in the next few days! --Full disclosure is responsible disclosure

No comments: