Security researcher Kr3w, has submitted on 10/05/2007 a cross-site-scripting (XSS) vulnerability affecting developer.yahoo.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 10/05/2007. It is currently fixed. |
Date submitted: 10/05/2007 |
Date published: 10/05/2007 |
Date fixed: 30/05/2007 | Status: FIXED |
Author: Kr3w |
Domain: developer.yahoo.com |
Category: XSS |
Pagerank: 1 |
URL: http://developer.yahoo.com/answers/ |
POST: Try It Now! Find Field is vulnerable to: <a href=google.com onmouseover=javascript:alert(document.cookie)>lol</a> |
Click here to view the mirror
|
|
|