Unfixed XSS vulnerability at www.emb.cl

2007-12-24T00:00:00
ID XSSED:29984
Type xssed
Reporter n0b0dy
Modified 2008-01-16T00:00:00

Description

Security researcher n0b0dy, has submitted on 24/12/2007 a cross-site-scripting (XSS) vulnerability affecting www.emb.cl, which at the time of submission ranked 98029 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/01/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.emb.cl/gerencia/searchtotal.mv?string=%22%3E%3Ch1%3EXss%20by%20n0b0dy%3C%2Fh1%3E