Lucene search

K

SecurityvulnsSECURITYVULNS:DOC:12570

HistoryMay 07, 2006 - 12:00 a.m.

myBloggie <= 2.1.3 XSS

2006-05-0700:00:00

vulners.com

4

myBloggie <= 2.1.3 XSS

Discovered by: Nomenumbra
Date: 6/4/2006
impact:moderate (privilege escalation,possible defacement)

MyBloggie versions 2.1.3 and below are vulnerable to XSS injection in the
image BBcode as follows:

[img]javascript:alert('xss')[/img]

Nomenumbra/[0x4F4C]