Коментарі для запису: MoBiC-12 Bonus: Peter’s Random Anti-Spam Image XSS http://websecurity.com.ua/1535/ Thu, 23 Apr 2026 03:47:52 +0000 http://wordpress.org/?v=MustLive Edition від: MustLive http://websecurity.com.ua/1535/#comment-300280 Sun, 09 Aug 2009 20:34:24 +0000 http://websecurity.com.ua/1535/#comment-300280 Peter, it's a problem with your captcha plugin. Because hole is not appearing with general sending XSS code in comment field, but it's appearing when your plugin is used at the site. <blockquote>Can you please explain how this cookie exploit interacts with the plugin?</blockquote> You need to use my exploit (which you need to setup - edit this html file to set site's URL) and you'll see how it works and where the hole appears. Peter, it’s a problem with your captcha plugin. Because hole is not appearing with general sending XSS code in comment field, but it’s appearing when your plugin is used at the site.

Can you please explain how this cookie exploit interacts with the plugin?

You need to use my exploit (which you need to setup - edit this html file to set site’s URL) and you’ll see how it works and where the hole appears.

]]> від: Peter http://websecurity.com.ua/1535/#comment-86265 Thu, 06 Dec 2007 21:31:21 +0000 http://websecurity.com.ua/1535/#comment-86265 Is this a problem with the CAPTCHA or the WordPress comment form in general? Can you please explain how this cookie exploit interacts with the plugin? Is this a problem with the CAPTCHA or the WordPress comment form in general? Can you please explain how this cookie exploit interacts with the plugin?

]]>