SSCHADV2013-008 - www.netcraft.com - Search Form Cross-site Scripting vulnerability
Advisory:
|
www.netcraft.com – Search Form Cross-site Scripting vulnerability
|
Advisory ID:
|
SSCHADV2013-008
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on www.netcraft.com
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
======================
Vulnerability Description
======================
Vulnerability Description
======================
The ‘q’-Parameter in the Search Form on www.netcraft.com is prone to a XSS vulnerability