Recently, I have noticed that many blogs or other fora that allow
user-posted comments suffer from a common bug with regards to comment
preview, such that the comment previewing feature can be exploited
with an XSS type 1 attack.
To test if your favorite blog is vulnerable in this fashion, enter
th...
user-posted comments suffer from a common bug with regards to comment
preview, such that the comment previewing feature can be exploited
with an XSS type 1 attack.
To test if your favorite blog is vulnerable in this fashion, enter
th...
[ more ]