Security researcher Zeitjak, has submitted on 30/09/2008 a cross-site-scripting (XSS) vulnerability affecting order.store.yahoo.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 02/10/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.
Date submitted: 30/09/2008 Date published: 02/10/2008 Fixed? Mail us!Status:  UNFIXED
Author: Zeitjak Domain: order.store.yahoo.com Category: XSS Pagerank: 1
URL: http://order.store.yahoo.com/cgi-bin/wg-request-catalog?catalog=stickermaker&et=48e163e3&basket=b%3D
5C3a42bfd100a6e848e15cdbc89e13b42bfd1357a994b9c4edd769d4588243596%26l%3D%26s%3D19xFp0IpoUylnEUcFpFtW
2OZXDs-
Click here to view the mirror
Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.