<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: PR07-38: XSS on sIFR

Re: PR07-38: XSS on sIFR

From: <bugs+securityfocus_at_novemberborn.net>
Date: 22 Jan 2008 19:19:26 -0000

('binary' encoding is not supported, stored as-is) Unfortunately there's a bit of confusion, as Mike Davidson of mikeindustries.com is no longer the maintainer of sIFR, and he has not updated the sIFR page in a while.

This issue was found and resolved on July 4th 2007, in version 2.0.3. It also appears that Internet Explorer is not vulnerable to this attack.

More about 2.0.3 and the XSS issue here: http://novemberborn.net/sifr/2.0.3
Received on Jan 22 2008

This message: [ Message body ]
Next message: g30rg3_x: "XSRF under Dean’s Permalinks Migration 1.0"
Previous message: nbbn_at_gmx.net: "DeluxeBB 1.1 XSS Vulnerabilitie"
Maybe in reply to: ProCheckUp Research: "PR07-38: XSS on sIFR"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]