Unfixed XSS vulnerability at www.ulg.ac.be

2012-01-31T00:00:00
ID XSSED:76052
Type xssed
Reporter samir-dz
Modified 2012-02-13T00:00:00

Description

Security researcher samir-dz, has submitted on 31/01/2012 a cross-site-scripting (XSS) vulnerability affecting www.ulg.ac.be, which at the time of submission ranked 38338 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/02/2012. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.ulg.ac.be/cms/j_15081/portail-infos?text=%3C/script%3E%3Ciframe%20src=%22http://xssed.com%22%3E&types=generated.Actualite&types=generated.ActualiteWebTV&types=generated.Agenda&types=generated.AgendaAnneeDesLangues&types=generated.AgendaFacultaire&types=generated.CommuniqueDePresse&types=generated.EvenementProtocolaire&types=generated.GaleriePhotos&types=generated.Page&textSearch=true&searchInFiles=true&mode=any&portlet=j_5895&portlet=j_5895