New User, Welcome!     Login

Guy Mizrahi

RE: feedreader3 has XSS vulnerability

easy to create an RSS based worm.

--Aviv.

-----Original Message-----
From: Guy Mizrahi [mailto:guy@hacking.org.il] 
Sent: Friday, September 28, 2007 3:02 PM
To: bugtraq@securityfocus.com
Subject: feedreader3 has XSS vulnerability

Hello,

feedreader3 has XSS vulnerability

When I post a script into wordpress( like <script>alert("XSS")</script>, the 
RSS feed in the internal browser is vulnerable and show an alert box.
POC movie here:
http://www.hacking.org.il/demos/feedreader3.wmv

Guy Mizrahi (ZuLL)
Hebrew blog: http://www.hacking.org.il

3Com WIFI router remote administration vulnerability.

Software version 1.2.10ww



Guy Mizrahi (ZuLL)

my hebrew blog: http://hacking.org.il


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!