7Graus - HTML Injection Vulnerability

what's up, romulo security in the house!

Discovered by rômulo the romulosecxxi
 
dork: intext:"- 2021 © 7Graus"
vulnerability: html injection and possible reflected xss

proof of concept

in any search field put your code and run!

example: https://www.subiblia.com/busca/?q=%3Cp%3Eromulosecurity%3C%2Fp%3E
other example: https://www.mensagemaniversario.com.br/busca.php?q=%3Cp%3Eromulosecurity%3C%2Fp%3E

the end!