Tuesday 4 of April of 2006, I have detected that it is possible to mount an attack of the type Cross Site Scripting (XSS) in cherokee-0.5.0 and all previous versions.
The problem resides, when introducing code HTML in the URL. Because previously, it was let now of a seemed failure, from version 0.4...
The problem resides, when introducing code HTML in the URL. Because previously, it was let now of a seemed failure, from version 0.4...
[ more ]