Jara version 1.6 suffers from a cross site scripting vulnerability.
08036c096ed9ba555d987f0a515c9421a8e0f73c23a18cc498818681fbd8d29c
# Exploit Title: jara 1.6 [XSS Vulnerabilities]
# Date: [2011.10.25]
# Author: Expl0its
# We Are : Expl0its , Higher_sense , Black.spook & H4ckcity.net - zone-hc.com
# Software Link: [http://sourceforge.net/projects/jara/files/v1.6/jarav16.zip]
# Version: [jara 1.6]
Vulnerable Page:
search.php?term&term=
Exploit:
http://127.0.0.1/jar/search.php?term&term=[XSS Vulnerabilities]