Assembla.com suffers from a cross site scripting vulnerability.
a5b7598b03f714de358a16bb7df04b0264f66752cf588f63ef6fad0d6a12511a
# Date: 25.02.2012
# Author: Sony
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/02/assemblacom-cross-site-scripting.html
..................................................................
Create FreeSpace.
http://www.assembla.com/spaces/sonystyles/admin/index
Upgrade-->If another subscriber will pay for this space please, provide his
email or login-->our xss code and press Enter.
http://4.bp.blogspot.com/-Th_hH2nXVyM/T0iljSOA4bI/AAAAAAAAAmk/QmqeD9N2G3g/s1600/assembla.JPG
http://1.bp.blogspot.com/-jiKfelvlo-0/T0ilnMJulsI/AAAAAAAAAmw/zcOpjYwuQ8E/s1600/assembla2.JPG