Microsoft Korea website(http://www.microsoft.co.kr/dynamic/ko/kr) is vulnerable to cross-site scripting(XSS).

Combining phishing technique when exploiting XSS vulnerability, therefore could lead to series security breaches or neak personal informations.


On May, I published that Microsoft website contailed SQL Injection vulnerability. This issue seemed to be resolved silently.

link: http://moonslab.com/930


reTweet
Posted by 문스랩닷컴
blog comments powered by Disqus

    댓글을 달아 주세요



    Web Analytics Blogs Directory