Unfixed XSS vulnerability at insite.blackamericaweb.com

ID XSSED:12321
Type xssed
Reporter Nullflow
Modified 2007-07-26T00:00:00


Security researcher Nullflow, has submitted on 11/07/2007 a cross-site-scripting (XSS) vulnerability affecting insite.blackamericaweb.com, which at the time of submission ranked 60210 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 26/07/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://insite.blackamericaweb.com/dwb_register/errors/index.html?ecode=31&emsg=%3Cscript%3Ealert('nullflow');%3C/script%3E