Type: Non-persistent
Criteria: Logged in
http://message.ijji.com/external/personalinfo.nhn?callback=alert(%27xss%27);//
This script returns the number of unread messages and the number of buddies. This is a recent addition to the site, as there was a design overhaul on some sections.
Instead of complaining about the callback variable again, I wish to point out an issue I have with the logic of the content-type header. Valid callback parameters begin with the string:
jsonp
In doing so, the content header is correctly returned (it’s JSON) as text/javascript. However, by simpily removing this text, the result is entirely different – text/html. Hmmph.
Advertisement
