Unfixed XSS vulnerability at amt1.com

ID XSSED:59127
Type xssed
Reporter bho
Modified 2009-05-27T00:00:00


Security researcher bho, has submitted on 26/03/2009 a cross-site-scripting (XSS) vulnerability affecting amt1.com, which at the time of submission ranked 698813 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 27/05/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://amt1.com/search.asp?search_text=%22%3E%3Cscript%3Ealert(%27XSS%20by%20bho%27);document.body.innerHTML=%27XSS%20by%20bho%27;%3C/script%3E