Closed trevorjay closed 11 years ago
Description of problem:
JSON services from victims-web are currently mis-typed.
How reproducible:
Always.
Steps to Reproduce:
Actual results:
... Content-Type: text/html; charset=utf-8 ...
Expected results:
... Content-Type: application/json; ...
Additional info:
Inspecting the code, mimetype is being set correctly. This is probably a flask configuration issue of some kind.
Still, it's probably worth fixing. This is one of my favorite XSS bugs. :)
This should now be fixed.
abn
commented
11 years ago abn
commented
11 years ago
Description of problem:
JSON services from victims-web are currently mis-typed.
How reproducible:
Always.
Steps to Reproduce:
Actual results:
... Content-Type: text/html; charset=utf-8 ...
Expected results:
... Content-Type: application/json; ...
Additional info:
Inspecting the code, mimetype is being set correctly. This is probably a flask configuration issue of some kind.
Still, it's probably worth fixing. This is one of my favorite XSS bugs. :)