Open Upload / Feature Requests / #96 Advisory from Netsparker - Open Upload and Reflected XSS

#96 Advisory from Netsparker - Open Upload and Reflected XSS - Reflected XSS

Milestone: Next_Release

Status: open

Owner: Alessandro Briosi

Labels: Advisory (1) Security (1)

Priority: 1

Updated: 2019-01-23

Created: 2019-01-23

Creator: Anonymous

Private: No

Hello,

While testing the Netsparker web application security scanner we identified a Code Evaluation and Reflected XSS vulnerability in Open Upload 0.4.2. Can you please advise whom shall we contact to disclose the vulnerability details so it can be fixed?

Please email me at daniel@netsparker.com for the technical details.

Looking forward to hearing from you.

Regards,

Daniel Bishtawi
Marketing Administrator | Netsparker Web Application Security Scanner

Discussion

Alessandro Briosi - 2019-01-23

I'm the developer, though 0.4.2 is really old!
You can send it to my sf account.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
- Anonymous
  
  Add attachments
  Cancel
  You seem to have CSS turned off. Please don't fill out this field.
  
  You seem to have CSS turned off. Please don't fill out this field.

Anonymous

Advisory from Netsparker - Open Upload and Reflected XSS - Reflected XSS

Group

Searches

Help

#96 Advisory from Netsparker - Open Upload and Reflected XSS - Reflected XSS

Discussion