fotolog xss May 11 2007 01:47AM
absamu gmail com
example:
http://www.fotolog.com/all_photos.html?user=[code]

http://www.fotolog.com/all_photos.html?user=%3Ch1%3EXSS%3C/h1%3E

bye

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus