Cross-site scripting in nukes

dmeany Jun 2, 2003 11:59 AM

Editing an html page seems to allow cross-site scripting and webdot code similar to:
alert("cookie:"+document.cookie);

1. Re: Cross-site scripting in nukes

greno Jun 2, 2003 11:32 PM (in response to dmeany)

If I found an employee inserting cross-site scripting into their content they wouldn't have a job for very long. Additionally, their content must be reviewed/approved before publishing.
Actions