[ZendTo] Unauthenticated XSS
Stewart Campbell
Stewart.Campbell at pulsion.co.uk
Fri Aug 19 15:06:01 BST 2016
HI all I don't think this is much of a threat but I'm no expert on these things... just trying to learn.
In pickup.php while unauthenticated
POST
auth="><script>alert('XSS');</script>
The auth variable in the displayPickupCheck function isn't sanitized like the others.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160819/29ecbc89/attachment.html
More information about the ZendTo
mailing list