CMS Made Simple Forums

Content management as it is meant to be
https://forum.cmsmadesimple.org/

Alert("XSS BUG")

https://forum.cmsmadesimple.org/viewtopic.php?t=13168

Page 1 of 1

Alert("XSS BUG")

Posted: Mon Jul 02, 2007 2:43 pm
by sjgrafx
Hello everyone,

I've just had this comment left on my test site

Alert("XSS BUG")

I am using CMSms 1.0.6. Can anyone tell me what this means, and, more importantly, how to fix it?

the URL to my site is:
http://www.sjgrafx.co.uk/cms

thanks in advance,
Steve.

Re: Alert("XSS BUG")

Posted: Mon Jul 02, 2007 3:07 pm
by skypanther
XSS = cross site scripting, in other words, a security hole in CMS-MS. You should upgrade to 1.0.8 as I know a couple of XSS attacks were fixed in that version as compared to 1.0.6. If it happens again, submit a bug report so that the dev team can find and plug the hole.

Tim

Re: Alert("XSS BUG")

Posted: Mon Jul 02, 2007 3:19 pm
by sjgrafx
Thanks, Tim,

Just upgraded to 1.0.8.......
Let's see if it happens again......

what sort of things are vulnerable with these "holes"?

Steve.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited