|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
SocialURL Login Page Cross-Site Scripting
morin.josh
gmail.com
Date: Mon Jan 07 2008 - 08:15:25 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Overview: SocialURL is a social community platform enabling you to organize your online identities. Connnect to all your social network sites with one URL.
SocialURL fails to sufficiently sanitize user-supplied input data via login box.
Class: Input Validation Error
Example:
1.<script>alert('xss')</script>
2.<iframe>
Discovered by: Joshua Morin
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]