Security researcher Renoized, has submitted on 31/08/2007 a cross-site-scripting (XSS) vulnerability affecting qc.search.yahoo.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 31/08/2007. It is currently fixed. |
Date submitted: 31/08/2007 |
Date published: 31/08/2007 |
Date fixed: 06/09/2007 | Status: FIXED |
Author: Renoized |
Domain: qc.search.yahoo.com |
Category: XSS |
Pagerank: 1 |
URL: http://qc.search.yahoo.com/search;_ylt=A0geunP6WtdGRgEBXWgbDQx.?p=http%3A%2F%2Fwww.huifa.cl%2Fbuscad or%2Fbuscar.php%3F%26cod_rubro%3D%26cb%3D%26criterio%3D%3C%2Ftitle%3E%3Ch1%3E%3Cmarquee%3Exss.xss.xs s.xss.xss.xss.xss.xss.xss.xss.xss%3C%2Fmarquee%3E%3C%2Fh1%3E%3Ctitle%3E&ei=UTF-8&fr=sfp&x=wrt&meta=v l%3D |
Click here to view the mirror
|
|
|