W3C home > Mailing lists > Public > site-comments@w3.org > May 2001

Cross-site scripting vulnerability in W3C public search engine

From: TAKAGI, Hiromitsu <takagi@etl.go.jp>
Date: Sat, 19 May 2001 04:58:40 -0400 (EDT)
To: site-comments@w3.org
Cc: takagi@etl.go.jp
Message-Id: <20010519173939.F751.TAKAGI@etl.go.jp>
I found a cross-site scripting vulnerability in the W3C public search

Accessing the following URL, the JavaScript code will be executed on
the w3.org domain by the user's browser.

For details about cross-site scripting vulnerability, please refer the
following pages.

Best regards,
Hiromitsu Takagi
Electrotechnical Laboratory
Received on Monday, 21 May 2001 01:51:26 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:15:30 UTC