Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#253 benchmark plugin have lot of XSSes.

open
nobody
None
5
2008-08-18
2008-08-18
Tadashi Jokagi
No

Benchmark plugin have lot of XSSes.

* in plugins/benchmark/benchmark.php
(snip)
<td class="maintable">
<input type="text" name="startq" value="<?php echo $_POST['startq'];?>" size="4">
-- <input type="text" name="maxq" value="<?php echo $_POST['maxq'];?>" size="4">
<?php echo "$bm_interval: "; ?><input type="text" name="addq" value="<?php echo $_POST['addq'];?>" size="4">
</td>
(snip)

I gave up a modified...

Discussion

  • Tadashi Jokagi
    Tadashi Jokagi
    2008-08-18

    • summary: some XSS in benchmark plugin. --> XSS in benchmark plugin.
     
  • Tadashi Jokagi
    Tadashi Jokagi
    2008-08-18

    • summary: XSS in benchmark plugin. --> benchmark plugin have lot of XSSes.