Unfixed XSS vulnerability at www.livio.net

2008-06-03T00:00:00
ID XSSED:33335
Type xssed
Reporter CCC
Modified 2008-06-04T00:00:00

Description

Security researcher CCC, has submitted on 06/03/2008 a cross-site-scripting (XSS) vulnerability affecting www.livio.net, which at the time of submission ranked 547837 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 06/04/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.livio.net/main/sitesearch.asp?domains=Livio.net&q=%22%3E%3Cscript%3Ealert%28%22Infected%22%29%3C%2Fscript%3E%3Ch1%3ECCC%3C%2Fh1%3E&sa=Google+Search&client=pub-2029007778384126&forid=1&ie=ISO-8859-1&oe=ISO-8859-1&cof=GALT%3A%239A2C06%3BGL%3A1%3BDIV%3A%2333FFFF%3BVLC%3AD03500%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A6699CC%3BALC%3A440066%3BLC%3A440066%3BT%3A336699%3BGFNT%3A223472%3BGIMP%3A223472%3BFORID%3A11&hl=en&sitesearch=Livio.net