[gopher] XSS in Gopher in Fx 3.6.11
Brian Koontz
brian at pongonova.net
Thu Oct 21 11:42:17 UTC 2010
On Wed, Oct 20, 2010 at 07:52:56PM -0700, Cameron Kaiser wrote:
> > This is all I got:
> >
> > http://www.floodgap.com"><script>alert('boo')</script> ha ha ha
>
> What browser was this? (That's all you *should* get, but on Camino and Fx
> I get an alert "boo".)
My bad...your subject line said "FF 3.6", and I missed that. I was on
FF 3.5. Although it's interesting that the problem was apparently
introduced after the 3.5 release...
--Brian
More information about the Gopher-Project
mailing list