TalkPHP - View Single Post

ETbyrne · 04-16-2008, 03:30 PM

only four of those are a problem:
http://www.evanbot.com/kudos/demo/?p...file_photo&id=[XSS],
Live Kudos CMS Demo[XSRF],
http://www.evanbot.com/kudos/demo/?page=post_wall&id=[XSS], and
http://www.evanbot.com/kudos/demo/?page=album&id=[XSS]

Other than that all the other ones don't do anything at all. I'll fix the problem and release a patch.

NOTE: These will not screw up someone's account, they will only waist disc space. Thanks for the heads up.

04-16-2008, 03:30 PM	#18 (permalink)
ETbyrne how quixotic are you? Join Date: Dec 2007 Location: Lapeer, MI Posts: 445 Thanks: 37	only four of those are a problem: http://www.evanbot.com/kudos/demo/?p...file_photo&id=[XSS], Live Kudos CMS Demo[XSRF], http://www.evanbot.com/kudos/demo/?page=post_wall&id=[XSS], and http://www.evanbot.com/kudos/demo/?page=album&id=[XSS] Other than that all the other ones don't do anything at all. I'll fix the problem and release a patch. NOTE: These will not screw up someone's account, they will only waist disc space. Thanks for the heads up. __________________ Dingo Web Systems > http://www.dingocode.com My Website > http://www.evanbot.com