TUCoPS :: Web :: Blogs :: b06-2042.htm

myBloggie <= 2.1.3 XSS
myBloggie <= 2.1.3 XSS
myBloggie <= 2.1.3 XSS


myBloggie <= 2.1.3 XSS=0D
=0D
Discovered by: Nomenumbra=0D
Date: 6/4/2006=0D
impact:moderate (privilege escalation,possible defacement)=0D
=0D
MyBloggie versions 2.1.3 and below are vulnerable to XSS injection in the=0D
image BBcode as follows:=0D
=0D
[img]javascript:alert('xss')[/img]=0D
=0D
Nomenumbra/[0x4F4C]

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH