
Here’s a quick write-up of a minor XSS (Cross Site Scripting) vulnerability on the website of Three.co.uk – one of the UK’s mobile providers. A brief recap… Most websites have a search function. If you search for something which cannot be found, the site will often say “No results found for XYZ.” If we can…
Continue reading →