Unfixed XSS vulnerability at www.aveamuzik.com

ID XSSED:47334
Type xssed
Reporter By.DejaVu
Modified 2008-08-15T00:00:00


Security researcher By.DejaVu, has submitted on 11/08/2008 a cross-site-scripting (XSS) vulnerability affecting www.aveamuzik.com, which at the time of submission ranked 103499 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 15/08/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.aveamuzik.com/main.jsp?pn=enynlr&mn=2&part=%3E%22%3E%3CScRiPt%3Ealert(1)%3C/ScRiPt%3E