String replace is actually a really common problem. Blwood discovered some XSS vulnerabilities in Tikiwiki. Here’s the premise. If the string “<SCRIPT>” is removed and you can use that to your advantage by entering something like “<sc<SCRIPT>ript>” which when “<SCRIPT>” is removed you get “<script>”. That’s bad. Bad, and common.

This entry was posted on Wednesday, May 31st, 2006 at 10:39 pm and is filed under XSS, Webappsec. Responses are currently closed, but you can trackback from your own site.