TUCoPS :: HP Unsorted V :: b06-2429.htm

Vodafone.de xss vulnerability
Vodafone.de XSS Vulnerability
Vodafone.de XSS Vulnerability


There's a little vulnerability in the post section of:
http://www.vodafone.de/business/support_download/77278.html

Sending a malicious code will result a code working on the page that pops up...

https://www.vodafone.de/simlock/servlets/sim?IMEI=[XSS CODE HERE]

example:
https://www.vodafone.de/simlock/servlets/sim?IMEI=

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH