Security researcher holisticinfosec, has submitted on 26/11/2008 a cross-site-scripting (XSS) vulnerability affecting find.americanexpress.com, which at the time of submission ranked 749 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/12/2008. It is currently fixed.
Date submitted: 26/11/2008 Date published: 18/12/2008 Date fixed: 18/12/2008Status:  FIXED
Author: holisticinfosec Domain: find.americanexpress.com Category: XSS Pagerank: 749
URL: http://find.americanexpress.com/search?q=%22%3E%3Ciframe%20src=http://www.visa.com%3E
Click here to view the mirror
Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.