BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
MojoPortal XSS Jul 30 2013 12:08PM
vulns dionach com
Class Stored Cross-Site Scripting
Remote Yes
Credit Michael Savage of Dionach (vulns (at) dionach (dot) com [email concealed])
Vulnerable MojoPortal 2.3.9.7

MojoPortal is prone to a stored cross-site scripting vulnerability because it
does not escape the titles of forum threads when inserting i...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus