Bugtraq mailing list archives

SocialURL Login Page Cross-Site Scripting

From: morin.josh () gmail com
Date: 7 Jan 2008 14:15:25 -0000

Overview: SocialURL is a social community platform enabling you to organize your online identities. Connnect to all 
your social network sites with one URL.
SocialURL fails to sufficiently sanitize user-supplied input data via login box.

Class: Input Validation Error

Example:
1.<script>alert('xss')</script>
2.<iframe>

Discovered by: Joshua Morin

Current thread:

SocialURL Login Page Cross-Site Scripting morin . josh (Jan 07)