WHID 2006-25: Everyone.net XSS

Everyone.net login script (loginuser.pl) is prone to a cross site scripting attack in the variable loginName.

Additional information:

Everyone.net XSS [Simo Ben Youssef, Feb 12 2006]

Attack Method:

Cross Site Scripting (XSS)

Incident Outcome:

Disclosure Only

Add new comment