Unfixed XSS vulnerability at www.nioc.org

2008-06-16T00:00:00
ID XSSED:42169
Type xssed
Reporter Toradiun
Modified 2008-05-07T00:00:00

Description

Security researcher Toradiun, has submitted on 16/06/2008 a cross-site-scripting (XSS) vulnerability affecting www.nioc.org, which at the time of submission ranked 53362 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/07/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.nioc.org/news/default.asp?table=economy&title=%D9%85%D8%AD%D9%85%D8%AF%20%D8%B1%D8%B6%D8%A7%20%D8%AE%D8%B1%20%D8%A7%D8%B3%D8%AA%20%20%D9%85%D9%86%20%D9%86%D9%86%D9%88%D8%B4%D8%AA%D9%85%20%20%D8%A8%D8%A7%20%20%D8%AA%D8%B4%DA%A9%D8%B1%20:%20%D9%85%D8%B1%D8%AA%D8%B6%DB%8C%20%D8%AA%D8%B1%D8%A7%D8%AF%DB%8C%D9%88%D9%86hacked!!!