Unfixed XSS vulnerability at www.baixaki.com.br

ID XSSED:74451
Type xssed
Reporter NetFuzzer
Modified 2011-09-12T00:00:00


Security researcher NetFuzzer, has submitted on 09/12/2011 a cross-site-scripting (XSS) vulnerability affecting www.baixaki.com.br, which at the time of submission ranked 320 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 09/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.baixaki.com.br/busca.asp?z=1&cx=partner-pub-7019091094896260:86zzz47inzp&cof=FORID:9&sa=Pesquisar&q=m3u%22;%20%0D%0A%20//id=%22q%22%20%0D%0A%20%20alert(String.fromCharCode(88,83,83));;//