eljuko
05-30-2017, 05:35 AM
Hey!
looks like the site has XSS vulnerability, you should look into it before someone actually uses it in harmfull ways.
https://en.wikipedia.org/wiki/Cross-site_scripting
<script>document.getElementsByClassName('userinfo')[0].style.backgroundColor='#ff3c00'; document.getElementsByClassName('userinfo')[0].style.color='#ffffff'; alert('XSS vulnerability, sorry for testing'); </script>
- Kind regards, eljuko
looks like the site has XSS vulnerability, you should look into it before someone actually uses it in harmfull ways.
https://en.wikipedia.org/wiki/Cross-site_scripting
<script>document.getElementsByClassName('userinfo')[0].style.backgroundColor='#ff3c00'; document.getElementsByClassName('userinfo')[0].style.color='#ffffff'; alert('XSS vulnerability, sorry for testing'); </script>
- Kind regards, eljuko