Results 1 to 10 of 12

Thread: XSS issue in JobRoller 1.6

May 30th, 2012 #1

ahaidukov

Thread Starter
Newbie

Join Date

May 2012

Posts

2

Thanks

0

Thanked 1 Time in 1 Post

XSS issue in JobRoller 1.6
Hi all,

I have found XSS issue in version 1.6 of JR. User dashboard is affected. The JS code can be injected via "message" GET parameter.

Example URL: somejobsite.com/dashboard/?message=<script type="text/javascript">alert('xss')</script>

Not so good for payed application

Reply With Quote
The Following User Says Thank You to ahaidukov For This Useful Post:

tinygiantstudios (May 31st, 2012)
May 31st, 2012 #2

jomarkosabel

Join Date

Mar 2009

Location

Philippines

Posts

40,978

Thanks

170

Thanked 3,407 Times in 3,278 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Please help our moderating team work more efficiently by not sending us support questions via PM. You can read more about how AppThemes support works here. However, you can send a PM to follow up and remind me if I missed your support request/thread.

Thank you and have a nice day.

Reply With Quote
May 31st, 2012 #3

sebet

Join Date

Oct 2010

Location

Portugal

Posts

1,491

Thanks

138

Thanked 207 Times in 182 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Checkout my products on the Marketplace.

Reply With Quote
May 31st, 2012 #4

barukar

Veteran

Join Date

Sep 2010

Location

Brasil, S�o Paulo, SP

Posts

6,785

Thanks

186

Thanked 742 Times in 623 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

-------------------------------------------------------------------------------------------
Projects: ClassiNoiva - Classim�veis - voc�noenem - i50 - Clube DETRAN

Reply With Quote
June 4th, 2012 #5

ahaidukov

Thread Starter
Newbie

Join Date

May 2012

Posts

2

Thanks

0

Thanked 1 Time in 1 Post

You must be an AppThemes customer and logged in to view this response. Join today!

Reply With Quote
June 4th, 2012 #6

sebet

Join Date

Oct 2010

Location

Portugal

Posts

1,491

Thanks

138

Thanked 207 Times in 182 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Checkout my products on the Marketplace.

Reply With Quote
June 5th, 2012 #7

amelie

Senior Member

Join Date

Dec 2010

Location

Austria

Posts

178

Thanks

20

Thanked 19 Times in 15 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Reply With Quote
June 5th, 2012 #8

sebet

Join Date

Oct 2010

Location

Portugal

Posts

1,491

Thanks

138

Thanked 207 Times in 182 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Checkout my products on the Marketplace.

Reply With Quote
June 5th, 2012 #9

spartac

Join Date

May 2011

Posts

7,171

Thanks

75

Thanked 830 Times in 808 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Do you need high-quality content for your Website? For a significantly reduced price? Try aicontently.com

We answer the questions in threads as fast as the private messages, So do not send support questions via private message. Use the forum instead and open a new thread for every issue.
Before you send any PM , Please read These rules .

Reply With Quote
June 5th, 2012 #10

amelie

Senior Member

Join Date

Dec 2010

Location

Austria

Posts

178

Thanks

20

Thanked 19 Times in 15 Posts

You must be an AppThemes customer and logged in to view this response. Join today!

Reply With Quote

« Translations missing? | Lost Job Packs »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

Jobroller 1.6 No footer issue?

By TheSyndicate in forum Report JobRoller Bugs

Replies: 1
Last Post: May 22nd, 2012, 09:57 AM
Jobroller 1.4.2 to 1.5.3 update issue

By bluesalman in forum JobRoller General Discussion

Replies: 1
Last Post: January 14th, 2012, 08:33 PM
Can I fix the spacing issue without re-installing Jobroller

By kristenduval10 in forum Report JobRoller Bugs

Replies: 5
Last Post: November 28th, 2011, 09:20 PM
jobroller background colour issue with header

By sportingjobs in forum JobRoller General Discussion

Replies: 1
Last Post: May 26th, 2011, 06:29 PM

Thread: XSS issue in JobRoller 1.6

Thread Tools

Search Thread

XSS issue in JobRoller 1.6

The Following User Says Thank You to ahaidukov For This Useful Post:

Thread Information

Users Browsing this Thread

Similar Threads

Jobroller 1.6 No footer issue?

Jobroller 1.4.2 to 1.5.3 update issue

Can I fix the spacing issue without re-installing Jobroller

jobroller background colour issue with header