Unfixed XSS vulnerability at busca5.achei.com.br

2007-02-18T00:00:00
ID XSSED:937
Type xssed
Reporter xRoot
Modified 2007-02-18T00:00:00

Description

Security researcher xRoot, has submitted on 18/02/2007 a cross-site-scripting (XSS) vulnerability affecting busca5.achei.com.br, which at the time of submission ranked 39049 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 18/02/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://busca5.achei.com.br/cgi-ps/ps_query1.cgi?franq=028&country=BR&countries=BR&tipo=e&opcao=br&query=%22%3E%3Cscript%3Ealert%28%22EscMan+Rulezzz%22%29%3C%2Fscript%3E