LOST-Chall

.

XSS - status:fixed

Found a bug? Let us know

XSS - status:fixed

Postby criple_ripper » Sun Jun 08, 2008 11:47 am

hi just show the new user profile feature...great...but i think it is XSS vulnarable... think you should fix it quickly...

criple_ripper
My brain has two parts... The left and the right...The left has nothing right in it and the righ has nothing left...
User avatar
criple_ripper
VIP and Challenge Creator
VIP and Challenge Creator
 
Posts: 34
Joined: Thu Jan 01, 1970 12:00 am
Location: Greece

Postby sabretooth » Mon Jun 09, 2008 11:15 am

I believe Bregi is looking into this (last time I heard) I am still fairly inactive til my assignment is done.

Thanks again for your support ;)

sabre
User avatar
sabretooth
Inactive Admin
Inactive Admin
 
Posts: 181
Joined: Thu Jan 01, 1970 12:00 am
Location: England

Postby Bregi » Mon Jun 09, 2008 3:37 pm

I'm pretty sure it's unexploitable. The same filter is used as in the other pages. So I will leave that this way. Told cripple_ripper already :P

Greez
”It only ends once, everything else is just progress.”
Image
User avatar
Bregi
Site Admin
Site Admin
 
Posts: 319
Joined: Wed Jan 04, 2006 7:58 am
Location: Switzerland

Postby sabretooth » Tue Jun 10, 2008 8:09 am

I'm not too sure at the minute. Ive been looking into it further.

I'll run a few tests on it today if/when i can, and see what I find.

Thanks

sabre
User avatar
sabretooth
Inactive Admin
Inactive Admin
 
Posts: 181
Joined: Thu Jan 01, 1970 12:00 am
Location: England

Postby Bregi » Fri Jun 13, 2008 4:56 pm

I fixed it, thanks to Mr_KaLiMaN for mentioning it again.
VIP badge for Mr_KaLiMan, he already reported bugs in the past.

Bregi
”It only ends once, everything else is just progress.”
Image
User avatar
Bregi
Site Admin
Site Admin
 
Posts: 319
Joined: Wed Jan 04, 2006 7:58 am
Location: Switzerland


Return to Bugs

Who is online

Users browsing this forum: No registered users and 0 guests

cron