Firefox v28.0 XSS Vulnerability
We love you, please fix this.
This post concentrates on my recent research regarding reflective Cross-Site Scripting (XSS or CSS) vulnerabilities within the most popular web browsers. The setup that is used to test the browsers is done within virtualised environment, using Damn Vulnerable Web Application (DVWA) hosted by XAMPP Apache server.
WHAT IS REFLECTIVE XSS?
URL generated by this mechanic.
v33.0.1750.154m —Updated 14. March 2014
The reason for that is that Google Chrome added special character encoding to their URL bar. If you copy and paste executed URL into Notepad you can see that characters, such as
View original post 217 more words