Cyber Security Blog

Gossamer Threads Links SQL login XSS Vulnerability

May 4, 2005 by Nathan House

This advisory identifies a XSS vulnerability in Gossamer Threads database application “Links SQL” login page. This document covers examples of how to exploit the application and the solution provided by Gossamer Threads.

Bugtraq: http://www.securityfocus.com/bid/13484/
Secunia: Secunia Advisory: SA15253

Download

About Nathan House

Nathan House is the founder and CEO of Station X a cyber security training and consultancy company. He has over 25 years experience in cyber security where he has advised some of largest companies in the world, assuring security on multi-million and multi-billion pound projects.

Nathan is the author of the popular "The Complete Cyber Security Course" which has been taken by over 165,000 students in 190 countries.

Over the years he has spoken at a number of security conferences, developed free security tools, and discovered serious security vulnerabilities in leading applications.

PGP Fingerprint : 0238 3006 75CD F734 029A 703E 3581 1381 D119 CB2E

alert(“hello”);

Info

Security Assessment

Consulting