what's up security guys, rômulo (século xxi) in the your hood!

website: repositorio.poli.ufrj.br
vulnerability: reflected xss

proof of concept

1. go to website.
2. in 'buscar por' put your javascript code.
3. press 'buscar' and ready! your code has been run.

the end!