Fixed XSS vulnerability at autonews.sat1.de

2012-02-29T00:00:00
ID XSSED:76775
Type xssed
Reporter owege
Modified 2015-12-03T00:00:00

Description

Security researcher owege, has submitted on 29/02/2012 a cross-site-scripting (XSS) vulnerability affecting autonews.sat1.de, which at the time of submission ranked 11086 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 12/03/2015. It is currently fixed.

Vulnerable URL: http://autonews.sat1.de/auto/news/index.jsp?marke="><script>alert(document.cookie)</script>&submit=OK