Kippo-Graph

42 views
Skip to first unread message

A. Ramos

unread,
Nov 3, 2012, 4:06:08 PM11/3/12
to kippo...@googlegroups.com
Hiya all,

I know this is not a kippo-graph forum, but the tool have an XSS in kippo-input.php. If an attacker try to run a command like: "<script>alert("xss")</script>", its executed in this php.

Regards,

Ioannis Koniaris

unread,
Nov 4, 2012, 2:55:10 AM11/4/12
to kippo...@googlegroups.com, A. Ramos
Thanks for the heads up, I'll make sure to filter such input/output in the next version.
Regards.
--
You received this message because you are subscribed to the Google Groups "kippo users" group.
To view this discussion on the web visit https://groups.google.com/d/msg/kippousers/-/gzAemyGmzAkJ.
To post to this group, send email to kippo...@googlegroups.com.
To unsubscribe from this group, send email to kippousers+...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/kippousers?hl=en.

Reply all
Reply to author
Forward
0 new messages