timberland.txt

2006-06-05T00:00:00
ID PACKETSTORM:47006
Type packetstorm
Reporter O.G.
Modified 2006-06-05T00:00:00

Description

                                        
                                            `There's a vulnerability in Timberland's search engine.  
  
The variable 'keywords' in searchHandler/index.jsp is not correctly sanitized.  
  
URL:  
hxxp://www.timberland.com/searchHandler/index.jsp?keywords=[XSS Code]  
  
Example:  
hxxp://www.timberland.com/searchHandler/index.jsp?keywords=<script>alert('test');</script>  
  
Author: O.G.  
`