Welcome Guest, Not a member yet? Register   Sign In
can't undersatand where does the pop up come from

I have a simple page in a site built on CI. In that page a just have flv player using SWF-object.
While playing the flv long pop up appears on top of the page with advertising and link leading to some other site. There is nothing strange in the source code. Is this XSS. If it is how to treat it. This behaviour appears only in IE 6,7. $config['global_xss_filtering'] set to true in the congig file.

Did you create the SWF content? It sounds like it. [url="http://docs.google.com/View?docid=ajfxntc4dmsq_14dt57ssdw"]Read this[/url]. I have not really worked with SWF but I could maybe see where the vuln is if you post some code.

Theme © iAndrew 2016 - Forum software by © MyBB