Security researcher Avada Kedavra, has submitted on 29/09/2007 a cross-site-scripting (XSS) vulnerability affecting content-search.cricinfo.com, which at the time of submission ranked 357 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 04/10/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 29/09/2007 |
Date published: 04/10/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Avada Kedavra |
Domain: content-search.cricinfo.com |
Category: XSS |
Pagerank: 357 |
|---|
URL: http://content-search.cricinfo.com/ci/content/site/search.html?search=%3Cscript%3Ealert%28%27s0h+rul
es+y0u%27%29%3C%2Fscript%3E&x=0&y=0 |
|
Click here to view the mirror
|
|
|
| 
