git.mjollnir.org Git - s9y.git/commit

]> git.mjollnir.org Git - s9y.git/commit

author	garvinhicking <garvinhicking>
	Thu, 12 May 2005 18:19:28 +0000 (18:19 +0000)
committer	garvinhicking <garvinhicking>
	Thu, 12 May 2005 18:19:28 +0000 (18:19 +0000)
commit	d169ce18d9ff4ba3a31a4552540eb2aa6b0e36a4
tree	9db75100c80ca54d232bf8805f41cf9d2f0e37f6	tree \| snapshot
parent	38959ebcb67ee261662259f33fe8c616a9ede388	commit \| diff

Now this is one funny XSS discovered by Rasmus:

You could send HTTP Cookie HTML which does not get htmlspecialchar()ed and then exploit the page for yourself only, and no other viewers.

Rare case of a XSS and low-impact, but still not nice when advanced form redirection takes place and you want to XSS exploit a single user :-)

Please test, if anybody is reading this :-D

include/functions_comments.inc.php

diff | blob | history

import of upstream's svn repo, along with my own branches

RSS Atom