Security researcher tenest, has submitted on 02/09/2007 a cross-site-scripting (XSS) vulnerability affecting staples.shoplocal.com, which at the time of submission ranked 1454 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 08/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 02/09/2007 |
Date published: 08/09/2007 |
Fixed? Mail us! | Status: UNFIXED |
Author: tenest |
Domain: staples.shoplocal.com |
Category: XSS |
Pagerank: 1454 |
URL: http://staples.shoplocal.com/staples/Default.aspx?action=search&storeid=2278909&searchtext=%3Cscript %3Ealert(/xss/);%3C/script%3E&submit.x=23&submit.y=10 |
Click here to view the mirror
|
|
|