Title: alsoisp's Replies | WordPress.org

---

# alsoisp

  [  ](https://wordpress.org/support/users/alsoisp/)

 *   [Profile](https://wordpress.org/support/users/alsoisp/)
 *   [Topics Started](https://wordpress.org/support/users/alsoisp/topics/)
 *   [Replies Created](https://wordpress.org/support/users/alsoisp/replies/)
 *   [Reviews Written](https://wordpress.org/support/users/alsoisp/reviews/)
 *   [Topics Replied To](https://wordpress.org/support/users/alsoisp/replied-to/)
 *   [Engagements](https://wordpress.org/support/users/alsoisp/engagements/)
 *   [Favorites](https://wordpress.org/support/users/alsoisp/favorites/)

 Search replies:

## Forum Replies Created

Viewing 7 replies - 1 through 7 (of 7 total)

 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[SpiderFAQ] css vulnerability](https://wordpress.org/support/topic/css-vulnerability/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [8 years, 3 months ago](https://wordpress.org/support/topic/css-vulnerability/#post-9992901)
 * I can’t send you the query here, please give me a mail to sent it.
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[SpiderFAQ] css vulnerability](https://wordpress.org/support/topic/css-vulnerability/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [8 years, 3 months ago](https://wordpress.org/support/topic/css-vulnerability/#post-9992898)
 * Enter the following XSS payload as search query:
 * // . “–!> //
 * I hope we see the query here in your Ticketsystem. In the post before, the query
   was interpretet.
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[SpiderFAQ] css vulnerability](https://wordpress.org/support/topic/css-vulnerability/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [8 years, 3 months ago](https://wordpress.org/support/topic/css-vulnerability/#post-9992894)
 * Hello,
    here is the original message: Dear Sir/Madam, I would like to report 
   a XSS vulnerability that I have found on the alsoisp.de website. The discovered
   vulnerability occurs because of incorrectly validated user input in the search
   function. The vulnerability has been tested with the latest version of Firefox
   on Linux (Firefox 58.0.2 64-bit). Reproduction Go to: [http://alsoisp.de/buchhaltung/](http://alsoisp.de/buchhaltung/)
   Enter the following XSS payload as search query: “–!> The JavaScript dialog will
   pop-up: When we look at the source code we can see the JavaScript that was executed
   by the browser: Mitigation My recommendation would be to filter the search input
   for special characters used in HTML and JavaScript. I hope that my findings and
   report can contribute to a better and more secure website of the alsoisp organization.
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[TablePress - Tables in WordPress made easy] Search field & show rows selection unvisible](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [12 years, 11 months ago](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/#post-3950732)
 * Hello Tobias,
 * thx for the fast help.
 * Regards
    Stephan
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[TablePress - Tables in WordPress made easy] Search field & show rows selection unvisible](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [12 years, 11 months ago](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/#post-3950671)
 * done 😉
 * Regards
    Stephan
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[TablePress - Tables in WordPress made easy] Search field & show rows selection unvisible](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [12 years, 11 months ago](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/#post-3950666)
 * Hello 🙂
 * I can do that….
    I do not want to publish. How can I send you this.
 * Stephan
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[TablePress - Tables in WordPress made easy] Search field & show rows selection unvisible](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/)
 *  Thread Starter [alsoisp](https://wordpress.org/support/users/alsoisp/)
 * (@alsoisp)
 * [12 years, 11 months ago](https://wordpress.org/support/topic/search-field-show-rows-selection-unvisible/#post-3950661)
 * Hallo Tobias.
 * Kann ich gerne machen aber….. möchte ich nicht veröffentlichen. Wie kann ich 
   dir diese zukommen lassen.
 * Gruss
    Stephan

Viewing 7 replies - 1 through 7 (of 7 total)