Unfixed XSS vulnerability at support.webex.com

2007-07-27T00:00:00
ID XSSED:13047
Type xssed
Reporter nicx0
Modified 2007-07-08T00:00:00

Description

Security researcher nicx0, has submitted on 27/07/2007 a cross-site-scripting (XSS) vulnerability affecting support.webex.com, which at the time of submission ranked 9508 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 07/08/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://support.webex.com/SelfServiceWeb/SelfServicePortal.portal;jsessionid=GMDTbyMnTjQGpNT4pNHxw5ylzF0lcLwRW81nTvgxG2JnMqVQDlyw!443065289?_nfpb=true&search_actionOverride=%3Cscript%3Ealert('Hello%20World!')%3C/script%3E&_windowLabel=search