XSS security vulnerability found

Brought to you by: oyejorge

#25 XSS security vulnerability found

Status: open

Owner: nobody

Labels: None

Priority: 9

Updated: 2012-07-18

Created: 2012-03-18

Creator: Henri Salo

Private: No

Hello,

Stefan Schurtz found XSS security vulnerability in WikyBlog. Original advisory here: http://www.darksecurity.de/advisories/2012/SSCHADV2012-006.txt http://seclists.org/bugtraq/2012/Mar/66

I have verified this vulnerability to work in WikyBlog version 1.7.3RC2. Do you have plans to fix this problem?

https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)

Please contact me in case of questions.

Henri Salo

Discussion

Henri Salo - 2012-03-18

Reported also in here: http://secunia.com/advisories/38699/

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
- Anonymous
  
  Add attachments
  Cancel
  You seem to have CSS turned off. Please don't fill out this field.
  
  You seem to have CSS turned off. Please don't fill out this field.

Henri Salo - 2012-03-18

http://osvdb.org/show/osvdb/62558

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
- Anonymous
  
  Add attachments
  Cancel
  You seem to have CSS turned off. Please don't fill out this field.
  
  You seem to have CSS turned off. Please don't fill out this field.

Anonymous