XSS vulnerabilty everywhere | ww.wp.xz.cn

qasuar
(@qasuar)

8 years, 11 months ago

Hi there,
I found that your plugin doesn’t filter the ” character which cuzes XSS vulnerability using something like "style=display:block;z-index:100000;position:fixed;top:0px;left:0;width:1000000px;height:100000px;background-color:red;" onmouseover=confirm(/Qasuar/)// so I hope you fix it as fast as possible

The topic ‘XSS vulnerabilty everywhere’ is closed to new replies.

0 replies
1 participant
Last reply from: qasuar
Last activity: 8 years, 11 months ago
Status: not resolved