Multiple Persistant XSS on Domains, Records, Templates, User, Supermasters, etc

catding / powerdns-webinterface

Automatically exported from code.google.com/p/powerdns-webinterface

Apache License 2.0

0 stars 0 forks source link

Multiple Persistant XSS on Domains, Records, Templates, User, Supermasters, etc #36

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

What steps will reproduce the problem?
1. >'<script>alert('XSS')</script>

What is the expected output? What do you see instead?
Can be used for extended attacks.

What version of the product are you using? On what operating system?
v1.5

Please provide any additional information below.
Please contact HackSys Team @ hacksysteam@hotmail.com

Thank you.

Original issue reported on code.google.com by mohammad...@gmail.com on 14 Oct 2012 at 6:51

GoogleCodeExporter commented 9 years ago

This should be adressed in the framework, but there is no plan for it right now.

Original comment by timo.witte on 15 Oct 2012 at 9:28

Changed state: Accepted