Tuesday, November 9, 2010

E-commerce by Hinetmedia™ XSS Vulnerability

on      No comments
Title:E-commerce by Hinetmedia™ XSS Vulnerability
Vendor:http://hinetmedia.com
Vulnerability Type: XSS (Cross Site Scripting)
Found by : p0pc0rn 09/11/2010
Risk level: Medium
Vulnerability Details:
User can execute arbitrary JavaScript code within the vulnerable application.

===
XSS
===
http://site.com/default.hm?store=[]&keywords=[XSS]


Status
=======
Fixed by technical support this evening.so fast! :D

Screenshot
==========


http://img513.imageshack.us/img513/6277/59796609.png


p0pc0rn
Share:

0 comments:

Post a Comment