Unfixed XSS vulnerability at www.rp-online.de

2007-02-07T00:00:00
ID XSSED:11411
Type xssed
Reporter Duke
Modified 2007-10-18T00:00:00

Description

Security researcher Duke, has submitted on 02/07/2007 a cross-site-scripting (XSS) vulnerability affecting www.rp-online.de, which at the time of submission ranked 9707 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/10/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.rp-online.de/app/suche/index.php?search=test123%22%3E%3Cimg+src%3D%22http%3A%2F%2Fwww.xssed.com%2Fxssed.gif%22+alt%3D%22&x=25&y=6&searchin=web