Unfixed XSS vulnerability at forums.healthyplace.com

2007-12-25T00:00:00
ID XSSED:30036
Type xssed
Reporter TreX
Modified 2008-01-16T00:00:00

Description

Security researcher TreX, has submitted on 25/12/2007 a cross-site-scripting (XSS) vulnerability affecting forums.healthyplace.com, which at the time of submission ranked 60973 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/01/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://forums.healthyplace.com/ubbthreads/showflat.php?Cat=&Number=70584&page=0&view=collapsed&sb=5&o="><script>alert('TreX')</script>