Tuesday, 19 February 2013

Non-persistent XSS vulnerability in IBNLive

An 17 Years Old Security researcher Researcher V3d@ch4La From Indian Cub3r Dev!Ls, has discovered a non-persistent XSS security flaw in the official website of IBN(ibnlive.in.com) .

Cable News Network-Indian Broadcasting Network (CNN-IBN) is an English-language Indian television news channel. The network is a partnership between Global Broadcast News (GBN) and Turner International (Turner) in India (a subsidiary of Time Warner).
 

The below link is still vulnerable:-

http://ibnlive.in.com/searcher/search.php?searchq=\"><script>alert(/ hakinstan/)</script>

not yet secured by ibn-7 guys...

No comments:

Post a Comment