Kippo-Graph

[A. Ramos]

Hiya all, I know this is not a kippo-graph forum, but the tool have an XSS in kippo-input.php. If an attacker try to run a command like: "<script>alert("xss")</script>", its executed in this php. Regards,

[Ioannis Koniaris]

Thanks for the heads up, I'll make sure to filter such input/output in the next version.
Regards.

--
You received this message because you are subscribed to the Google Groups "kippo users" group.
To view this discussion on the web visit https://groups.google.com/d/msg/kippousers/-/gzAemyGmzAkJ.
To post to this group, send email to kippo...@googlegroups.com.
To unsubscribe from this group, send email to kippousers+...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/kippousers?hl=en.