⚠ In case you've missed it, we have migrated to our new website, with a brand new forum. For more details about the migration you can read our blog post for website migration. This is an archived forum. ⚠

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

image- crud XSS vulnerability 2 - images with titles

Started by J-c, 10 February 2013 - 23:39 PM

Single Page

J-c

Member

Posted 10 February 2013 - 23:39 PM

Hello,

I use Image-crud.

I filled the field "title" (example 4) with : <script>alert('lol');</script>

After the title is saved (f5), when i open the image i have a popup with the "lol" alert.