Support Forum - Tag: cross-site scripting attack - Recent Posts http://www.kriesi.at/support/tags/cross-site-scripting-attack Support Forum - Tag: cross-site scripting attack - Recent Posts en-US Thu, 20 Jun 2013 11:52:58 +0000 http://bbpress.org/?v=1.0.2 <![CDATA[Search]]> q http://www.kriesi.at/support/search.php Kriesi on "Broadscope theme vulnerable to Cross-site scripting attacks?" http://www.kriesi.at/support/topic/broadscope-theme-vulnerable-to-cross-site-scripting-attacks#post-81704 Wed, 31 Oct 2012 14:36:49 +0000 Kriesi 81704@http://www.kriesi.at/support/ <p>Hi! </p> <p> I am aware and the updates are already in the pipeline, once they are approved from themeforest you will be able to download them ;) </p> <p> Regards,<br /> Kriesi </p> Dude on "Broadscope theme vulnerable to Cross-site scripting attacks?" http://www.kriesi.at/support/topic/broadscope-theme-vulnerable-to-cross-site-scripting-attacks#post-81693 Wed, 31 Oct 2012 13:29:14 +0000 Dude 81693@http://www.kriesi.at/support/ <p>Hi! </p> <p> See: <a href="http://www.kriesi.at/support/topic/xss" rel="nofollow">http://www.kriesi.at/support/topic/xss</a> </p> <p> Best regards,<br /> Peter </p> Mya on "Broadscope theme vulnerable to Cross-site scripting attacks?" http://www.kriesi.at/support/topic/broadscope-theme-vulnerable-to-cross-site-scripting-attacks#post-81683 Wed, 31 Oct 2012 13:08:04 +0000 Mya 81683@http://www.kriesi.at/support/ <p>Hi greensleeves,</p> <p>I believe Kriesi is already aware of the issues Janne presents but just in case I'm tagging Kriesi as well as the rest of the support team to this thread.</p> <p>Regards,<br /> Mya </p> greensleeves32 on "Broadscope theme vulnerable to Cross-site scripting attacks?" http://www.kriesi.at/support/topic/broadscope-theme-vulnerable-to-cross-site-scripting-attacks#post-81506 Tue, 30 Oct 2012 05:31:52 +0000 greensleeves32 81506@http://www.kriesi.at/support/ <p>I recently got this message from a stranger via my contact form on my website (www.dancinshoesdj.com). Is there anything to it?</p> <p>I'm a Finnish security researcher. This site is vulnerable to reflected Cross-site Scripting attacks. Please see my web-site - latest blog entry - about the issue that affects multiple themes by Kriesi.</p> <p>I would have posted this information to Kriesi\'s support forum, but I\'m not their customer and therefore cannot login. I feel I must now contact some vulnerable sites, because you have the possibility to ask for corrections from the developer.</p> <p>Kind Regards,<br /> Janne Ahlberg<br /> <a href="http://jannefi.blogspot.fi/" rel="nofollow">http://jannefi.blogspot.fi/</a> </p>