[funsec] Mitt Romney and cyber-security
rms at computerbytesman.com
rms at computerbytesman.com
Wed Jan 30 17:45:13 CST 2008
Hi,
Has Mitt Romney had anything to say yet in his campaign about
cyber-security? I'm asking because I just found a cross-site scripting
error at the Romney campaign Web site. Here's a quick and dirty demo of the
problem:
http://tinyurl.com/3dowmd
This bug can be used by outsiders to inject their own "custom" content at
the Romney Web site.
I wonder if the site has more interesting bugs such as an SQL injection
error in a back-end database.....
Richard M. Smith
More information about the funsec
mailing list