Web Application Security
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: XSS - Double Quote break out and White Space filtered
May 28 2009 02:46PM
arvind doraiswamy (arvind doraiswamy gmail com)
This worked a treat, thanks. What does this mean though? So if I take
an example:
<input type=text name=p1 size=50 value=>
Now say I type ``onclick=alert(1) inside the text box this becomes..
<input type=text name=p1 size=50 value=``onclick=alert(1)>
Does this mean I'm saying - The value is Null...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
an example:
<input type=text name=p1 size=50 value=>
Now say I type ``onclick=alert(1) inside the text box this becomes..
<input type=text name=p1 size=50 value=``onclick=alert(1)>
Does this mean I'm saying - The value is Null...
[ more ]