Security researcher Uber0n, has submitted on 21/02/2009 a cross-site-scripting (XSS) vulnerability affecting www.avanza.se, which at the time of submission ranked 17728 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 21/02/2009 |
Date published: 16/12/2011 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Uber0n |
Domain: www.avanza.se |
Category: XSS |
Pagerank: 17728 |
|---|
| URL: https://www.avanza.se/aza/registrering/fyll_i_adress.jsp |
| POST: operation=forward&isCompany=false&PAY_BACK_COVERAGE=1&firstname=&lastname=HOVER%22+onmouseover%3D%22 alert%28123%29&socOrgNo=%C5%C5%C5%C5MMDDXXXX&email=&mobile=&tel_night=&campaign=Frivillig+informatio n&heardFrom=V%E4lj+nedan... |
|
Click here to view the mirror
|
|
|
| 
