Security researcher m3hr4n, has submitted on 17/09/2007 a cross-site-scripting (XSS) vulnerability affecting payment.finaleshop.com, which at the time of submission ranked 95430 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 20/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 17/09/2007 |
Date published: 20/09/2007 |
Fixed? Mail us! | Status: UNFIXED |
Author: m3hr4n |
Domain: payment.finaleshop.com |
Category: XSS |
Pagerank: 95430 |
URL: http://payment.finaleshop.com/Process.cfm?ID=mehran&ref=&OrderID=%3Ch1%3EThis%20Website%20Hacked%20B y%3C/h1%3E%3Cbr%3Ch1%3EMehran.Hacker@gmail.com%3C/h1%3E%3Cbr%3E%3Ch1%3EThis%20a%20Xss%20Bug%20In%20y our%20Script%3C/h1%3E |
Click here to view the mirror
|
|
|