Together with the server-side stripslash() php function this call slips through the IE8 XSS filters because it strips the slashes server side and such evades IE8 detection when the HTTP request is being sent by IE8:
See: http://www.0x000000.com/?i=634
Welcoming Truyu to Have I Been Pwned's Partner Program
-
I always used to joke that when people used Have I Been Pwned (HIBP), we
effectively said "Oh no - you've been pwned! Uh, good luck!" and left it at
that...
8 hours ago
0 comments
Post a Comment