Security researcher InSiDe, has submitted on 14/06/2007 a cross-site-scripting (XSS) vulnerability affecting www.mp3.com, which at the time of submission ranked 2085 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 15/06/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 14/06/2007 |
Date published: 15/06/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: InSiDe |
Domain: www.mp3.com |
Category: XSS |
Pagerank: 2085 |
|---|
URL: http://www.mp3.com/search.php?query=<script>alert(1)</script>E&action=Search&true_search=1&stype=all
&tag=search%3Bbutton&om_act=convert&om_clk=fdsearch |
|
Click here to view the mirror
|
|
|
| 
