Unfixed XSS vulnerability at myaccount.voipwise.com

ID XSSED:17743
Type xssed
Reporter st@rext
Modified 2007-09-27T00:00:00


Security researcher st@rext, has submitted on 16/09/2007 a cross-site-scripting (XSS) vulnerability affecting myaccount.voipwise.com, which at the time of submission ranked 82567 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 27/09/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: https://myaccount.voipwise.com/clx/buy_credit_cc.php?fromsignup=true&cctype=%22%3E%3Cscript%3Ealert(%22a.q\n+guzel+servis+ha%22)%3C/script%3E