PhotoPost Photo Gallery Sales PhotoPost Sales Toll Free Phone Number
Mon-Fri 9am-4pm EST
  PhotoPost Photo Sharing Photo Gallery    Visualize community tm
Home| Details| Support| Demo: User / Admin| Customer Galleries| Contact Us| Forums| Blog| Members Area| Buy PhotoPost

Go Back   PhotoPost Community > PhotoPost Support > PhotoPost Pro Support Forums > Photopost Pro Bug Reports
XSS issue with slideshow.php XSS issue with slideshow.php
Register FAQ Social Groups Calendar Mark Forums Read

Photopost Pro Bug Reports Post post installation PhotoPost Pro problems here.

Reply
 
LinkBack Thread Tools Rate Thread Display Modes
Old September 11th, 2006, 11:30 AM   #1 (permalink)
Member
Verified Customer
 
Join Date: Sep 2003
Posts: 106
XSS issue with slideshow.php
ScanAlert reports a Cross Site Scripting (XSS) issue with slideshow.php in PhotoPost 5.31

Path /photopost/slideshow.php
Query slidedelay=80000001
photo=33
sort=%27%22%29%3Cscript+id%3D%2280000000%22+%2F%3E
cat=80000001
size=medium
slideshow=1
Tom1234 is offline   Reply With Quote
Old September 11th, 2006, 11:50 AM   #2 (permalink)
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 68,070
interesting sort is not a variable passed or used in slideshow.php i will need to find their report
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Last edited by Michael P; September 11th, 2006 at 01:04 PM.
Chuck S is offline   Reply With Quote
Reply

« can't watermark existing images.. | Not statistics? »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
PHP issue Alphabravo Before You Buy 12 August 29th, 2006 08:51 AM
bulkupload.php issue? glowinggal Photopost Pro Installation & Upgrades 4 February 8th, 2006 08:45 PM
vb3.0.8 XSS question vbusers11 Before You Buy 1 August 23rd, 2005 10:37 PM
Security Alert: XSS and MySQL injection flaws c0bra General Discussion 8 March 29th, 2005 03:53 PM


All times are GMT -5. The time now is 09:43 AM.

Contact Us - PhotoPost - Archive - Privacy Statement - Top
Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0
HOME | Copyright 2001-2009 ALL ENTHUSIAST, INC. ALL RIGHTS RESERVED.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94