Unfixed XSS vulnerability at onlinebooks.library.upenn.edu

2007-05-23T00:00:00
ID XSSED:8439
Type xssed
Reporter FuZz
Modified 2007-05-24T00:00:00

Description

Security researcher FuZz, has submitted on 23/05/2007 a cross-site-scripting (XSS) vulnerability affecting onlinebooks.library.upenn.edu, which at the time of submission ranked 2804 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 24/05/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://onlinebooks.library.upenn.edu/webbin/book/search?author=%3CA+HREF%3Djavascript%3Aalert%28%27FuZz%27%29%3EBackslash+Security+%3C%2FA%3E&amode=words&title=&tmode=words