|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
SkyeShoutbox <= v.1.2.0 XSS
zerogue
gmail.com
Date: Mon May 22 2006 - 14:11:45 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
SkyeShoutbox <= v.1.2.0 XSS
Discovered by: Nomenumbra
Date: 21/5/2006
impact:moderate (possible defacement)
SkyeShoutbox doesn't filter any input at all, thus
allowing attackers to inject arbitrary html or javascript.
Nomenumbra
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]