Showing posts with label ladypopular.com. Show all posts
Showing posts with label ladypopular.com. Show all posts

Tuesday 30 August 2011

XSS Vulnerability in Ladypopular.com

The popular girl's online game play site ladypopular.com suffers from a cross site scripting vulnerability. The GET parameter "error_message" is not properly sanitized and allows the injection of HTML and javascript code.

Check the vulnerable URL.


I've notified the ladypopular team about the vulnerability.



Read more...