Gnut Gnutella client HTML injection

August 31, 2001

Author: JT Smith

From Net-Security.org: “I recently discovered a bug in gnut, a console/www
Gnutella client for Linux and Windows, that allows the
injection of html code in the Search Result Page of the
Webfrontend.

This is done by sharing a file with html tags embedded.
test<.hr>.mp3 for example More complex things are possible
with Javascript and shared Subdirectories. The html code
will be displayed in the browser of every gnut webfrontend
user, who gets that file as a search result.”

Category:

Linux

RELATED ARTICLESMORE FROM AUTHOR

Maintainer Confidential: Challenges and Opportunities One Year On

Bridging Design and Runtime Gaps: AsyncAPI in Event-Driven Architecture

Implementing OpenTelemetry Natively in an Event Broker

Innovation as a Catalyst in Telecommunications

Linux 6.8 Brings More Sound Hardware Support For Intel & AMD, Including The Steam Deck

RELATED ARTICLES MORE FROM AUTHOR