Unfixed XSS vulnerability at mirabolivia.com

2008-05-27T00:00:00
ID XSSED:40083
Type xssed
Reporter el-mago
Modified 2008-10-07T00:00:00

Description

Security researcher el-mago, has submitted on 27/05/2008 a cross-site-scripting (XSS) vulnerability affecting mirabolivia.com, which at the time of submission ranked 85861 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 10/07/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://mirabolivia.com/consulta_busqueda.php?txt_msg=%22%3E%3Ciframe%20width=1000%20height=800%20src=http://clubhacker.org/foro%3E%3C/iframe%3E