Security - cross-site scripting
Maxpower 0
From: -
From: -
Notice
This topic is archived. New comments cannot be posted and votes cannot be cast.Responses to this topic
1 Re: Security - cross-site scripting
Philipp
From: Austria
Administrator
1342From: Austria
Security - cross-site scripting
No one informated me about this
Open search.php and replace:
with:
[code|$query = htmlentities(ScriptEx(checkvar($query)));
I will released an updated version as soon I return to the office.
No one informated me about this
Open search.php and replace:
$query = ScriptEx(checkvar($query));
with:
[code|$query = htmlentities(ScriptEx(checkvar($query)));
I will released an updated version as soon I return to the office.
Hi,
Have you seen this - http://secunia.com/advisories/18130/ - Esselbach Storyteller CMS System "query" Cross-Site Scripting? Is there a fix available?
Tnx!