Unfixed XSS vulnerability at www.al-fa.com.tr

ID XSSED:65476
Type xssed
Reporter Taberani
Modified 2011-12-21T00:00:00


Security researcher Taberani, has submitted on 26/12/2009 a cross-site-scripting (XSS) vulnerability affecting www.al-fa.com.tr, which at the time of submission ranked 15689007 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 21/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.al-fa.com.tr/arama.asp?IsPostback=true&key=%22%3E%3Cscript%3Ealert%28%22Taberani%22%29%3C%2Fscript%3E