SocialURL Login Page Cross-Site Scripting

From: morin.josh@gmail.com
To: bugtraq@securityfocus.com
Cc:
Subject: SocialURL Login Page Cross-Site Scripting
Date:


Overview: SocialURL is a social community platform enabling you to organize your online identities. Connnect to all your social network sites with one URL.
SocialURL fails to sufficiently sanitize user-supplied input data via login box.

Class: Input Validation Error

Example:
1.<script>alert('xss')</script>
2.<iframe>

Discovered by: Joshua Morin





Copyright © 1995-2019 LinuxRocket.net. All rights reserved.