I found a way to inject javascript into our software that I can't really resolve. I need to demonstrate to somebody what the security consequences are.
Can somebody remind me how to use it to grab a cookie from a user? Thanks :)
document.cookie?
Quote from: St0rm.iD on February 20, 2004, 02:00 PM
document.cookie?
That's all I needed to know; stupid javascript :)