This is a technical writeup describing a persistent XSS vulnerability in InselPhoto v1.1. The vulnerability allows an attacker to inject malicious JavaScript code into the photo album description, which executes when other users view the slideshow.
Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:InselPhoto v1.1
Auth required
Prerequisites:User account creation · Album creation · Photo upload with malicious description