#63 BiiiG Security BUG!

open
nobody
None
5
2012-09-14
2002-07-24
Anonymous
No

Sorry for my bad english..

when i am writing:

\x3e or \x3c - i can use all of html tags or javascript +)

\x3e instead of <
&
\x3c instead of >

This problem can be solved in a minute...
Just write at input.php3 & input_handleH.php3 files:

$M = str_replace("\", "!!!!", $M);

Luck!

Discussion


Anonymous

Cancel  Add attachments





Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks