Security researcher Trew, has submitted on 05/10/2008 a cross-site-scripting (XSS) vulnerability affecting www.fiestaamericana.com, which at the time of submission ranked 1802119 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 06/10/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 05/10/2008 |
Date published: 06/10/2008 |
Fixed? Mail us! | Status: UNFIXED |
Author: Trew |
Domain: www.fiestaamericana.com |
Category: XSS |
Pagerank: 1802119 |
URL: http://www.fiestaamericana.com/portal/Availability/busquedaDisponibilidad.do?country=';%20alert('XSS ');%20var%20a='&city=2&idioma=en_MX |
Click here to view the mirror
|
|
|