Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote malicious users to inject arbitrary Javascript via a javascript URI in the BBcode url tag.
source: wwwsecurityfocuscom/bid/16286/info
AOblogger is prone to multiple input-validation vulnerabilities These issues are due to a failure in the application to properly sanitize user-supplied input
Successful exploitation of these vulnerabilities could allow an attacker to:
- compromise the application
- access, modify, or create d ...