Inconsistent behavior while attempting to exploit a misconfigured flash crossdomain.xml
victim.com – URL of the misconfigured application.
https://victim.com has an overly permissive crossdomain.xml at https://victim.com/crossdomain.xml.
<?xml version=”1.0″?>
<!DOCTYPE cross-domain-policy
SYS… Continue reading Inconsistent behavior while attempting to exploit a misconfigured flash crossdomain.xml