News Document Title:
====================
Researcher discovered high priority bug on WhiteHouse Service


Release Date:
=============
2011-11-07


Laboratory Article:
===================
A Laboratory Researcher (Alexander Fuchs) f0x23 discovered 2 persistent cross site scripting bugs on 
the official website of the whitehouse. Successful exploitation of the vulnerability allows an attacker 
to inject persistent script code on application-side and can result in account steal or persistent manipulations. 
The malicious script code is getting executed on all petitions the attacker signs or create. The vulnerability was 
located on the online petition service of the official whitehouse website.

Benjamin Kunz Mejri has formed and reported the issue to a Director of New Media Technologies (Executive Office of the President). 
The vulnerability will be fixed within 48h by a hotfix of the development/security team.

Advisory: http://www.vulnerability-lab.com/get_content.php?id=308