Security researcher zuppergazi, has submitted on 02/03/2007 a cross-site-scripting (XSS) vulnerability affecting uk.search.yahoo.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 02/03/2007. It is currently fixed. |
Date submitted: 02/03/2007 |
Date published: 02/03/2007 |
Date fixed: 05/06/2007 | Status: FIXED |
Author: zuppergazi |
Domain: uk.search.yahoo.com |
Category: XSS |
Pagerank: 1 |
URL: http://uk.search.yahoo.com/yhs/search?fr=yhs-ipnmrtl&ei=UTF-8&lyt=st&p="><script>alert(document.cook ie)</script> |
Click here to view the mirror
|
|
|