LightNEasy 2.2.1 Stored XSS Vulnerability

# Title : LightNEasy 2.2.1 Stored XSS Vulnerability
# Date: 2013-03-15
# Credit: This Bug was founded by Asesino04 "The Black Devils"
# Tested on: Windows XP SP2
# Site : http://lightneasy.org/
# Category: [webapps]
# Dork :intext:"LightNEasy 2.2.1"
# Special Thanks To : sH3LL05Dz & Lady NEXA & x3o-1337

# Please Like The New Fb page  : https://fb.com/Th3.Black.D3Vils
-----------
http://127.0.0.1/[path]/news.php
then add a comment that contain your XSS code


Demo :
http://www.darragi.de/news.php?page=news&id=1&showcomments=1
http://dryden.altervista.org/news.php?page=news&id=1&showcomments=1
http://www.ausled.com.au/news.php?page=news&id=1&showcomments=1
http://www.direkcija-tz.com.ba/news.php?page=news&id=1&showcomments=1
-----------
Thanks To : | r0073r | KedAns-Dz | D4RKCR1PT3R | Keystr0ke | x3o-1337 | Èlite TrØjan | sH3LL05Dz
            | Ana Eve | DZ Combattant | Muhammad Talha Khan | r4dc0re | SeeMe CrosS | Zikou-16 | DaOne
            | Angel Injection | NuxbieCyber | Tibit | Sammy FORGIT | D4NB4R beBoss | LORDOFDARKNES
            | All Dz hackerz
-----------
 Contact:
# Fane Page : www.facebook.com/Th3.Black.D3Vils
# Youtube  : www.youtube.com/user/Th3BlackDevils
# Facebook : www.facebook.com/DevilsDz
# Email    : mr.k4rizma@gmail.com

//The information contained within this publication is





//supplied "as-is"with no warranties or guarantees of fitness





//of use or otherwise. Bot24, Inc nor Bradley Sean Susser accepts





//responsibility for any damage caused by the use or misuse of





//this information