Unfixed XSS vulnerability at crprod.teiep.gr

2009-07-02T00:00:00
ID XSSED:57860
Type xssed
Reporter pr0n
Modified 2010-05-07T00:00:00

Description

Security researcher pr0n, has submitted on 07/02/2009 a cross-site-scripting (XSS) vulnerability affecting crprod.teiep.gr, which at the time of submission ranked 642899 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/07/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://crprod.teiep.gr/stats.php?name=stats&year=pr0n%20||%20s3cure.Gr%20||%20fix%20it%20please!%20-&month=&mday=%3Cscript%3Ealert(String.fromCharCode(120,115,115,32,105,110,106,101,99,116,105,111,110,32,45,45,32,112,114,48,110,32,58,32,115,51,99,117,114,101,46,71,114,32))%3C/script%3E