Unfixed XSS vulnerability at exmachina.nl

ID XSSED:58942
Type xssed
Reporter Jelmer
Modified 2009-12-07T00:00:00


Security researcher Jelmer, has submitted on 16/03/2009 a cross-site-scripting (XSS) vulnerability affecting exmachina.nl, which at the time of submission ranked 3500054 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 12/07/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://exmachina.nl/business-case-studies.php?id=2%20union%20all%20select%201,2,concat(news_ID,%20%27%3Cscript%3Ealert(123)%3C/script%3E%27),4,news_date%20from%20news/*