Saturday, June 16, 2012

JAMF Software's JAMF Nation XSS!

Reported seven reflective XSS to JAMFsoftware back in May of 2012, but unfortunately I was unable to make a brief video demonstrating the injection points for the XSS payloads before the reported issues were remedied due to my overloaded schedule.

You will find information related to the exploitation and resolution below. Thanks for reading!


JAMF Software is a software company who specializes in Apple platform management products.

Homepage: http://www.jamfsoftware.com

JAMF has a sister homepage, jamfnation.jamfsoftware.com, which is used as a collaboration platform for users of their software.

JAMFnation was the vulnerable website which contained the issues I reported.