Fixed XSS vulnerability at www.viatadecacat.net

2008-05-10T00:00:00
ID XSSED:51480
Type xssed
Reporter Shocker -at- ShockingSoft.com
Modified 2008-06-10T00:00:00

Description

Security researcher Shocker -at- ShockingSoft.com, has submitted on 05/10/2008 a cross-site-scripting (XSS) vulnerability affecting www.viatadecacat.net, which at the time of submission ranked 322280 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 06/10/2008. It is currently fixed.

Vulnerable URL: http://www.viatadecacat.net/report.php?comm_id=%3Cbody%20onload=eval(String.fromCharCode(97,108,101,114,116,40,34,83,104,111,99,107,101,114,32,64,32,119,119,119,46,83,104,111,99,107,105,110,103,83,111,102,116,46,99,111,109,34,41,59))%3E