{"id":272,"date":"2006-07-13T02:13:51","date_gmt":"2006-07-12T20:13:51","guid":{"rendered":"http:\/\/www.dotcomunderground.com\/blogs\/2006\/07\/13\/hacking-hotmail-trough-xss\/"},"modified":"2006-07-13T02:13:51","modified_gmt":"2006-07-12T20:13:51","slug":"hacking-hotmail-trough-xss","status":"publish","type":"post","link":"https:\/\/www.dotcomunderground.com\/blogs\/2006\/07\/13\/hacking-hotmail-trough-xss\/","title":{"rendered":"Hacking Hotmail trough XSS"},"content":{"rendered":"<p>Sixteen year-old Adriaan Graas from The Netherlands discovered an XSS (cross site scripting) exploit in Hotmail. The exploit allows hackers to steal cookies from their victims and obtain full control over their inboxes without the need of knowing their passwords.<\/p>\n<p>Details of the exploit can be found here:<br \/>\n<!--adsense#HalfBanner--><br \/>\n<a href=\"http:\/\/adriaangraas.feetback.nl\/browse.php?vf=\/security\/exploits\/hotmail\/how-to.php\">http:\/\/adriaangraas.feetback.nl\/browse.php?vf=\/security\/exploits\/hotmail\/how-to.php<\/a><\/p>\n<p>More than a week later of his informing it to Microsoft, the billion-dollar company still hasn&#8217;t fixed the flaw.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Sixteen year-old Adriaan Graas from The Netherlands discovered an XSS (cross site scripting) exploit in Hotmail. The exploit allows hackers to steal cookies from their victims and obtain full control over their inboxes without the need of knowing their passwords. Details of the exploit can be found here: http:\/\/adriaangraas.feetback.nl\/browse.php?vf=\/security\/exploits\/hotmail\/how-to.php More than a week later of [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,9],"tags":[],"class_list":["post-272","post","type-post","status-publish","format-standard","hentry","category-tech","category-tips"],"_links":{"self":[{"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/posts\/272","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/comments?post=272"}],"version-history":[{"count":0,"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/posts\/272\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/media?parent=272"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/categories?post=272"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dotcomunderground.com\/blogs\/wp-json\/wp\/v2\/tags?post=272"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}