Web Application Security
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Help with referer issues in XSS Mar 02 2012 06:55AM
Yuping Li (lyp20062392 gmail com)
Hi, all

Suppose there is a reflect XSS vulnerability in a pop SNS, but this
site is "concerned" about security, so they check the referer field of
certain POST request to make sure that they are normal and correct. Is
it possible for me to bypass this check within javascript? It seems
that I can't ...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus