2 matches found
TorrentFlux User-Agent XSS Vulnerability
http://www.stevenroddis.com.au/2006/10/06/torrentflux-user-agent-xss-vulnerability/ Name: TorrentFlux User-Agent XSS Vulnerability Published: 2006-10-06 Critical Level: Moderate Type: Cross-Site Scripting Where: Remote Status: 0-Day Software: Torrentflux 2.1 Discoverer: Steven Roddis...
torrentflux -- User-Agent XSS Vulnerability
Steven Roddis reports that User-Agent string is not properly escaped when handled by torrentflux. This allows for arbitrary code insertion...