By the way, who ever decided it would be fun to reply by checking the gluejar
website for XSS vulnerabilities, by all means, tell everyone about it!
Eric
On Dec 16, 2011, at 10:14 PM, Michael J. Giarlo wrote:
On Fri, Dec 16, 2011 at 21:42, Eric Hellman e...@hellman.net wrote:
You'll be
I gave a lightning talk on XSS vulnerabilities in library software at the first
Code4Lib conference.
You'll be happy to know that as bad as things are, they've improved
considerably! I showed several ILS vendors how I could insert arbitrary
javascripts into their products. Some of them fixed
On Fri, Dec 16, 2011 at 21:42, Eric Hellman e...@hellman.net wrote:
You'll be happy to know that as bad as things are, they've improved
considerably! I showed several ILS vendors how I could insert arbitrary
javascripts into their products. Some of them fixed their products in the
next