Category: Captcha Form

XSS,, Captcha Form, CWE-79, CAPEC-86, Cross Site Scripting, Resolved

XSS in at captchaView parameter URL “Please use this form to report the error you are experiencing.” The Form once contained a Captcha Form to prevent Bots and Spam from Submitting the Form. The Form was submitted with a POST containing the XSS in the captchaView Parameter using a Double-URL encoded expression.. POST..&captchaView=visual%2522%253balert%25281%2529%252f%252f…In […]