Lucene search

K
xssedRibelXSSED:65393
HistoryDec 17, 2009 - 12:00 a.m.

Unfixed XSS vulnerability at www.comunemordano.it

2009-12-1700:00:00
Ribel
www.xssed.com
4

Security researcher Ribel, has submitted on 17/12/2009 a cross-site-scripting (XSS) vulnerability affecting www.comunemordano.it, which at the time of submission ranked 5289243 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.comunemordano.it/cerca.php?query=<script>alert(document.cookie)%3B<%2Fscript>&search=1&x=0&y=0