Unfixed XSS vulnerability at www.newgol.com

ID XSSED:72385
Type xssed
Reporter Alest0rm
Modified 2011-12-13T00:00:00


Security researcher Alest0rm, has submitted on 20/03/2011 a cross-site-scripting (XSS) vulnerability affecting www.newgol.com, which at the time of submission ranked 371804 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.newgol.com/index.php?chiavi=%3Cscript%3Ealert%28%22peace%22%29%3C%2Fscript%3E&sezione=articoli&azione=ricerca&vai=