Social Share 2010-06-05 Cross Site Scripting

`www.eVuln.com advisory:  
"search" - Non-persistent XSS in Social Share  
Summary: http://evuln.com/vulns/169/summary.html   
Details: http://evuln.com/vulns/169/description.html   
  
-----------Summary-----------  
eVuln ID: EV0169  
Software: Social Share  
Vendor: n/a  
Version: 2010-06-05  
Critical Level: low  
Type: Cross Site Scripting  
Status: Unpatched. No reply from developer(s)  
PoC: Available  
Solution: Not available  
Discovered by: Aliaksandr Hartsuyeu ( http://evuln.com/ )  
  
--------Description--------  
It is possible to inject xss code into "search" parameter in  
"search.php" script.  
Parameter "search" is not properly sanitized before being used in HTML  
code.  
  
--------PoC/Exploit--------  
  
Non-persistent XSS Example.  
  
XSS example: http://website/socialshare/search.php?search=<XSS>  
  
---------Solution----------  
Not available  
  
----------Credit-----------  
Vulnerability discovered by Aliaksandr Hartsuyeu  
http://evuln.com/code-analysis.html - source code analysis service  
  
  
`