Search...

Unfixed XSS vulnerability at www.serm.de

2007-04-11T00:00:00

ID XSSED:24820
Type xssed
Reporter BackDoor
Modified 2007-05-11T00:00:00

Description

Security researcher BackDoor, has submitted on 04/11/2007 a cross-site-scripting (XSS) vulnerability affecting www.serm.de, which at the time of submission ranked 0 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/11/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.serm.de/index.php?page="><script>alert(document.cookie)</script>><marquee><h1>BackDoor</h1></marquee>

JSON Vulners Source

Initial Source

{"enchantments": {"score": {"value": 0.0, "vector": "NONE", "modified": "2016-03-20T00:55:28", "rev": 2}, "dependencies": {"references": [], "modified": "2016-03-20T00:55:28", "rev": 2}, "vulnersScore": 0.0}, "title": "Unfixed XSS vulnerability at www.serm.de", "published": "2007-04-11T00:00:00", "id": "XSSED:24820", "modified": "2007-05-11T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "reporter": "BackDoor", "bulletinFamily": "bugbounty", "viewCount": 1, "cvelist": [], "references": ["http://www.serm.de"], "description": "Security researcher BackDoor, has submitted on 04/11/2007 a cross-site-scripting (XSS) vulnerability affecting www.serm.de, which at the time of submission ranked 0 on the web according to Alexa. \nWe manually validated and published a mirror of this vulnerability on 05/11/2007. It is currently unfixed. \nIf you believe that this security issue has been corrected, please send us an e-mail.\n\nVulnerable URL: http://www.serm.de/index.php?page=\"><script>alert(document.cookie)</script>><marquee><h1>BackDoor</h1></marquee>", "type": "xssed", "href": "http://www.xssed.com/mirror/24820/", "lastseen": "2016-03-20T00:55:28", "edition": 1}