- Denon - the following sites were tested:
- Marantz - the following sites were tested:
Vendor response: thank you (however, vendor has not fixed any of the sites. Retested on 6-Oct-2012)
Screen-shots of basic tests:
2) Mcintoshlabs.com simple iframe 'injection''
5) Denon.fi basic XSS test using latest Chrome browser. Although some browsers have "anti-XSS" - features, there are known workarounds and "hacks". Developers should not trust browser security alone.