BugTraq
Back to list
|
Post reply
Weblog Oggi v1.0
Jun 02 2006 02:40AM
luny youfucktard com
Weblog Oggi v1.0
Homepage:
http://www.hotwebscripts.com/index.php
User input isn't sanatized before being dynamically generated. For proof of concept just put <IMG SRC="javascript:alert('XSS');"> in as a comment
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Homepage:
http://www.hotwebscripts.com/index.php
User input isn't sanatized before being dynamically generated. For proof of concept just put <IMG SRC="javascript:alert('XSS');"> in as a comment
[ reply ]