Security researcher holisticinfosec, has submitted on 04/11/2008 a cross-site-scripting (XSS) vulnerability affecting etrade.ic.hk, which at the time of submission ranked 3592127 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/12/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 04/11/2008 |
Date published: 18/12/2008 |
Fixed? Mail us! | Status: UNFIXED |
Author: holisticinfosec |
Domain: etrade.ic.hk |
Category: XSS |
Pagerank: 3592127 |
URL: http://etrade.ic.hk/livechat/message_box.php?theme=&l=admin&x=%22%3E%3CSCRIPT%3Ealert(document.cooki e)%3C%2FSCRIPT%3E&deptid=1 |
Click here to view the mirror
|
|
|