Unfixed XSS vulnerability at www.em.avnet.com

2007-12-24T00:00:00
ID XSSED:29928
Type xssed
Reporter Pouya_server
Modified 2007-12-24T00:00:00

Description

Security researcher Pouya_server, has submitted on 24/12/2007 a cross-site-scripting (XSS) vulnerability affecting www.em.avnet.com, which at the time of submission ranked 117345 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 24/12/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: https://www.em.avnet.com/sts/home/0,11497,RID=0&CID=32209&CCD=USA&SID=0&DID=DF2&LID=0&BID=DF2&CTP=STS,00.html?ACD=1&UID='%3E%3Cscript%3Ealert(%22Pouya%22)%3C/script%3E