Unfixed XSS vulnerability at www.migavia.ru

ID XSSED:73076
Type xssed
Reporter haRI
Modified 2011-11-12T00:00:00


Security researcher haRI, has submitted on 01/06/2011 a cross-site-scripting (XSS) vulnerability affecting www.migavia.ru, which at the time of submission ranked 1320788 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.migavia.ru/search/?search=%22%3E%22%3E%3CIFRAME%20SRC=%22javascript:alert%28%27XSS%27%29;%22%3E%3C/IFRAME%3E