rain13 Posted January 18, 2012 Author Share Posted January 18, 2012 Does this fix the exploit?<meta http-equiv="Content-Type" content="text/html; charset=utf-8"> Link to comment Share on other sites More sharing options...
justsomeguy Posted January 18, 2012 Share Posted January 18, 2012 Check here for information: http://blog.kotowicz.net/2010/10/xss-hackme-challenge-solution-part-2.htmlhttp://openmya.hacker.jp/hasegawa/security/utf7cs.html Link to comment Share on other sites More sharing options...
rain13 Posted January 18, 2012 Author Share Posted January 18, 2012 Thank you. Little testing shows that <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> protects it against utf-7 attack. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.