Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[RT-SA-2014-002] rexx Recruitment: Cross-Site Scripting in User Registration
Mar 27 2014 02:56PM
RedTeam Pentesting GmbH (release redteam-pentesting de)
Advisory: rexx Recruitment Cross-Site Scripting in User Registration
RedTeam Pentesting discovered a cross-site scripting (XSS) vulnerability
in rexx Recruitment's user registration page during a penetration test.
If attackers can persuade users to click on a prepared link or
redirected them to suc...
[ more ]
Copyright 2010, SecurityFocus