Fixed XSS vulnerability at www.zebulon.fr

2009-06-07T00:00:00
ID XSSED:62551
Type xssed
Reporter warvector
Modified 2009-07-07T00:00:00

Description

Security researcher warvector, has submitted on 06/07/2009 a cross-site-scripting (XSS) vulnerability affecting www.zebulon.fr, which at the time of submission ranked 28026 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 07/07/2009. It is currently fixed.

Vulnerable URL: http://www.zebulon.fr/search.php?q=%22%3E%3Cscript%3Ealert(document.cookie);%3C/script%3E&sa.x=0&sa.y=0&domains=zebulon.fr&client=pub-5317426548079039&channel=8636135540&forid=1&ie=ISO-8859-1&oe=ISO-8859-1&flav=0000&sig=yvJOvPd5XfYH_yIK&cof=GALT%3A%23C01F17%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A006AB3%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A3A3A3A%3BLC%3A006AB3%3BT%3A000000%3BGFNT%3ACCCCCC%3BGIMP%3A3A3A3A%3BFORID%3A11&hl=fr&sitesearch=zebulon.fr