Search...

Unfixed XSS vulnerability at bbs.progenic.com

2007-05-22T00:00:00

ID XSSED:8390
Type xssed
Reporter Nemessis
Modified 2007-05-24T00:00:00

Description

Security researcher Nemessis, has submitted on 22/05/2007 a cross-site-scripting (XSS) vulnerability affecting bbs.progenic.com, which at the time of submission ranked 154710 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 24/05/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://bbs.progenic.com/Logon.aspx?SessionID="><script>alert("Nemessis-www.rstzone.net")</script>

JSON Vulners Source

Initial Source

{"enchantments": {"score": {"value": -0.0, "vector": "NONE", "modified": "2016-03-20T00:54:32"}, "dependencies": {"references": [], "modified": "2016-03-20T00:54:32"}, "vulnersScore": -0.0}, "reporter": "Nemessis", "id": "XSSED:8390", "cvss": {"score": 0.0, "vector": "NONE"}, "published": "2007-05-22T00:00:00", "history": [], "description": "Security researcher Nemessis, has submitted on 22/05/2007 a cross-site-scripting (XSS) vulnerability affecting bbs.progenic.com, which at the time of submission ranked 154710 on the web according to Alexa. \nWe manually validated and published a mirror of this vulnerability on 24/05/2007. It is currently unfixed. \nIf you believe that this security issue has been corrected, please send us an e-mail.\n\nVulnerable URL: http://bbs.progenic.com/Logon.aspx?SessionID=\"><script>alert(\"Nemessis-www.rstzone.net\")</script>", "bulletinFamily": "bugbounty", "viewCount": 0, "cvelist": [], "type": "xssed", "hash": "d535108e73545c7bf8ff39de8f32538331da653ddfd30b7fde695445b0c8f001", "references": ["http://bbs.progenic.com"], "title": "Unfixed XSS vulnerability at bbs.progenic.com", "href": "http://www.xssed.com/mirror/8390/", "lastseen": "2016-03-20T00:54:32", "edition": 1, "objectVersion": "1.2", "modified": "2007-05-24T00:00:00"}