Unfixed XSS vulnerability at schema.ehl.lu.se

ID XSSED:50364
Type xssed
Reporter SaMTHG
Modified 2008-02-10T00:00:00


Security researcher SaMTHG, has submitted on 23/09/2008 a cross-site-scripting (XSS) vulnerability affecting schema.ehl.lu.se, which at the time of submission ranked 11073 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 02/10/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://schema.ehl.lu.se/4DACTION/WebShowSimpleSearch/5/2-0?wv_type=4&wv_ts=20080923T193001X%3C%3C%3C%3C&wv_search=%27%3E%3Cscript%3Ealert(1)%3C%2Fscript%3E&wv_bSearch=Search&wv_first=0&wv_addObj=