Y
Hacker News
new
|
ask
|
show
|
jobs
by
drablyechoes
3153 days ago
Vulnerable to XSS.
<b onmouseover=alert('XSS')>click me!</b>
1 comments
dabernathy89
3153 days ago
XSS implies that you can get this script to run for
other
users, not just yourself.
link
drablyechoes
3153 days ago
I suspect it would work the same if the script was stored in a TXT record for a domain being queried.
link
drablyechoes
3153 days ago
There is even a tool for this called dnsxss.
link