Back to list
Feb 13 2008 08:33PM
Krzysztof Burghardt (krzysztof burghardt pl)
There is a bug in "Log" function of Search Unleashed by John Godley,
This plug-in stores search queries but does not validates stored data
and put them back "raw" to browser.
HTML and Java Script can be injected with search request:
To execute injected code admin have to go to Manage -> Search
Unleashed -> Log (and in my example point his cursor to text area).
Author was notified by his bug tracker:
Krzysztof Burghardt <krzysztof (at) burghardt (dot) pl [email concealed]>
[ reply ]
Copyright 2010, SecurityFocus