Bug 89 - Stored xss in repro 1.85
Summary: Stored xss in repro 1.85
Status: NEW
Alias: None
Product: repro
Classification: Unclassified
Component: proxy (show other bugs)
Version: unspecified
Hardware: All Linux
: P1 major
Assignee: Owner of all unassigned bugs
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-06-27 17:15 CDT by cameron
Modified: 2015-06-27 17:15 CDT (History)
0 users

See Also:


Attachments
POC (57.35 KB, image/png)
2015-06-27 17:15 CDT, cameron
Details

Note You need to log in before you can comment on or make changes to this bug.
Description cameron 2015-06-27 17:15:44 CDT
Created attachment 5 [details]
POC

improper sanitation in the add user form field. 

by adding the user: <script>alert('poc')</script>
then when viewing the users the script will execute.