Unfixed XSS vulnerability at www.giava.com

2007-08-09T00:00:00
ID XSSED:15947
Type xssed
Reporter murdercode
Modified 2007-09-09T00:00:00

Description

Security researcher murdercode, has submitted on 08/09/2007 a cross-site-scripting (XSS) vulnerability affecting www.giava.com, which at the time of submission ranked 783846 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 09/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.giava.com/top1/Multi.asp?txtSearch=%22%3E%3Cscript%3Ealert%28%22Discovered+by+murdercode+%7C+murdercode%40gmail.com%22%29%3Balert%28%22www.infernet-x.com+%7C+white+hats+hacking+italian+community%22%29%3B%3C%2Fscript%3E&submit=Look+for+Games&radSearch=Txt&selCrit=AND