Unfixed XSS vulnerability at www.gemax.rs

ID XSSED:76056
Type xssed
Reporter Predrag Cujanovic
Modified 2012-02-13T00:00:00


Security researcher Predrag Cujanovic, has submitted on 01/02/2012 a cross-site-scripting (XSS) vulnerability affecting www.gemax.rs, which at the time of submission ranked 6773751 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/02/2012. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.gemax.rs/sr/info/news.html?view=comment&topicId=170&type="/><script>alert(document.cookie)</script>