Unfixed XSS vulnerability at www.printsavings.com

ID XSSED:39279
Type xssed
Reporter k1ll3r_null
Modified 2008-01-06T00:00:00


Security researcher k1ll3r_null, has submitted on 19/05/2008 a cross-site-scripting (XSS) vulnerability affecting www.printsavings.com, which at the time of submission ranked 1156577 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 01/06/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.printsavings.com/Search.aspx?key=%3E%22%3E%3Cscript%3Ealert(/%20xssed%20by%20k1ll3r_null%20!/)%3C%2Fscript%3E%3C%3Ciframe%20src=%22http://www.xssed.com%22%3E%3C/iframe%3E&SearchGo=0