Rockstar Games: CSRF in 'set.php' via age causes stored XSS on 'get.php' - http://www.rockstargames.com/php/videoplayer_cache/get.php'

Hello, Background: Sending a POST request to set.php with age='PAYLOAD' will cause a stored XSS on the GET.php file most likely caused by the cookie, since that's what the age is based on. For this vulnerability and in order to demonstrate BOTH CSRF and XSS I have written a simple script tested o...