Monday, March 7, 2011

My Opera XSS

My Opera - Share your photos, get a free blog and meet friends

my.opera.com vulnerable to Cross-site scripting (XSS)

Poc: It's still alive!

http://my.opera.com/community/photos/search?q=XSS










http://my.opera.com/community/rss/standalone.pl?url=XSS





Mirror: http://www.xssed.com

1 comment:

Usman said...

Thanks for pointing these out. We appreciate it. I have filed tickets for this internally.
Best Regards,
Usman