Mall Blog XSS in Comments

2009
11
Dec
8

So you came from the The MALL blog, this is because of opened out HTML comments on the MALL blog.
The MALL blog has full html support in its comments, which is a dangerous feature.

More sites :

  • www.eatsleepandcode.com
  • www.layt.net
  • mature-ip.eu : Any nodes can be edited on this site, wierd!!! Fix it ASAP

Similar Posts




Comments

Awesome

By Anonymous (not verified) on Thu, 03/04/2010 - 11:59.

Good stuff!

RE

By James (not verified) on Mon, 03/01/2010 - 18:18.

I can use the information significantly. Thank you for taking the time to send them. I'm trying to create a new page for my Web Design services business platform, and I'm looking at all the features before I can decide.

I think they should use

By Michael J (not verified) on Sun, 02/28/2010 - 12:50.

I think they should use BBCODE on comment system. IT's better

hi

By mynet (not verified) on Sat, 02/27/2010 - 03:28.

thanks for useful and meaningful article.

dangerous HTML code

By joanne34 (not verified) on Tue, 02/02/2010 - 13:22.

I went to the website on your list. Yes, you can use a simple HTML::CGIChecker - A Perl module to detect dangerous HTML code

I can use these information

By Reed Anders (not verified) on Mon, 01/04/2010 - 12:05.

I can use these information greatly. Thanks for taking the time to post them. I'm trying to create a new site for my essay writing services business in this platform and I'm looking at all the features before I can decide.

Happy Holidays

By Anonymous (not verified) on Sat, 12/26/2009 - 07:35.

I like the design of your website.

Happy Holidays

Jena from
MN

emm

By Alfred (not verified) on Sat, 12/12/2009 - 04:50.

i click a post in ur sidebar and here i am on a page to leave a comment, i want to read the post, why take me here ?

Post new comment

The content of this field is kept private and will not be shown publicly.