Unfixed XSS vulnerability at smartphonemarket.nl

2007-09-05T00:00:00
ID XSSED:6973
Type xssed
Reporter OMEHA
Modified 2007-10-05T00:00:00

Description

Security researcher OMEHA, has submitted on 09/05/2007 a cross-site-scripting (XSS) vulnerability affecting smartphonemarket.nl, which at the time of submission ranked 0 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 10/05/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://smartphonemarket.nl/test/php/php_info.php?a[]=%3Cscript%3Ealert(/XSSed_By_OMEHA/);%3C/script%3E<script>alert(document.cookie);</script>