Unfixed XSS vulnerability at www.ericlawrence.com

2010-01-02T00:00:00
ID XSSED:65850
Type xssed
Reporter WHK
Modified 2010-06-07T00:00:00

Description

Security researcher WHK, has submitted on 01/02/2010 a cross-site-scripting (XSS) vulnerability affecting www.ericlawrence.com, which at the time of submission ranked 12556605 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 06/07/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.ericlawrence.com/eric/post/comment.asp?date=%27%22%3E%3Cimg%20src=%22http://www.mujerestic.com/wp-content/uploads/muerte-azul.gif%22%20/%3E%3Cscript%3E