AOH :: HP Unsorted V :: B06-3119.HTM

Vampirefreaks journal xss



VampireFreaks journal XSS
VampireFreaks journal XSS



yes the journal is exploitable aswell

there seem to be no filters on the journal title so you can simply put: ">

also the other places where you can update your journal etc. don't filter anything

proof:
http://vampirefreaks.com/journal.php?u=NanoyMaster


The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.