Unfixed XSS vulnerability at extranet.ciblex.fr

ID XSSED:67386
Type xssed
Reporter xerces
Modified 2010-05-07T00:00:00


Security researcher xerces, has submitted on 21/06/2010 a cross-site-scripting (XSS) vulnerability affecting extranet.ciblex.fr, which at the time of submission ranked 1585219 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/07/2010. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://extranet.ciblex.fr/extranet/client/corps.php?PHPSESSID=a8a5771ce0f9f060d6bd837b2941b4c4&module=colis&colis=%27%27%3E%3Cscript%3Ealert%281337%29%3C/script%3E%3Cmarquee%3E%3Ch1%3EXSS%20by%20z%20%3C/h1%3E%3C/marquee%3E