vendor: http://www.oneorzero.com/ vuln : http://[host]/supporter/index.php?t=tupd&id=[SQL] http://[host]/supporter/index.php?t=tupd&id=[XSS] Author : Vampire vampire_chiristof@xxxxxxxxx Homepage : Www.HackerZ.iR Www.H4ckerZ.Com Iran HackerZ Security Team