exploit example is here. Not really an exploit, but could be more useful if I could insert a redirect script in a yahoo e-mail. I read up on the -- exploit before tags and <form> tag exploits, but I don't think that they work. Anyways, I want to try to use scripting from inside of .jpeg files, like some I've seen on this site. If someone could point me in the right direction, it would be greatly appreciated. Maybe some links to examples or something like that.

Well, the link above will take you to my server at home, and display http://www.mail.yahoo.com as your location. I've changed the script for the page also. Instead of encrypting the info in md5, it just posts the information to my server logs in plain text. It was something that I just kind of started out of bordom, and grew from there. Thanks for any help ahead of time, I just thought this was somewhat interesting.

Av is showing up, "url spoofing", guess im upto date

hi,
this is Address spoofer,this bug for IE,Netscape & other browser,
but don't need use many









us can use:
http://www.address.com+alt+0160+@+address
for ex:
http://mail.yahoo.com @microsoft.com
good luck.

yeah that's a good idea.. don't know how many people it would trick if they actually look at the address bar though...

it however still works for FTP so if you can make the FTP show as HTTP then it will be fine

http://www.gulftech.org/03012004.php

Using some of the recent IE faws you could probably use that to grab passwords remotely.