Less than and greater than characters submitted in the descriptions of albums, images and probably others are unencoded. Any tags submitted in such fields are subjected to whitelist validation, but this can be bypassed by prepending a less than character to the injected open and close tags.
Exploit: <<script>alert(0)//<</script>
PoC: http://coniferous.ning.com/photo/792231134-1
Monday, April 26, 2010
Subscribe to:
Post Comments (Atom)
have a peek at these guys see it here Click This Link go to my site Look At This Bonuses
ReplyDelete