Security researcher Uber0n, has submitted on 12/08/2008 a cross-site-scripting (XSS) vulnerability affecting scratch.mit.edu, which at the time of submission ranked 1278 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 17/06/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 12/08/2008 |
Date published: 17/06/2009 |
Fixed? Mail us! | Status: UNFIXED |
Author: Uber0n |
Domain: scratch.mit.edu |
Category: XSS |
Pagerank: 1278 |
URL: http://scratch.mit.edu/contact/us/ |
POST: data[Page][email]=<script>alert(123)</script> |
Click here to view the mirror
|
|
|