Unfixed XSS vulnerability at www.deswebmusic.com

ID XSSED:58832
Type xssed
Reporter FZERO
Modified 2009-01-07T00:00:00


Security researcher FZERO, has submitted on 13/03/2009 a cross-site-scripting (XSS) vulnerability affecting www.deswebmusic.com, which at the time of submission ranked 17546552 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 01/07/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.deswebmusic.com/index2.php?pg=promocoes&cidade=">><script>alert(1337)</script><h1>HACK3D%20BY%20FZERO%20;)%20XSSED%20:D</h1>