CVE-2009-2882

This exploit demonstrates a cross-site scripting (XSS) vulnerability in PG Matchmaking by injecting a script tag into the 'gender' parameter of the search.php page. The PoC uses a simple alert to display the user's cookies, proving arbitrary JavaScript execution.

This exploit demonstrates a cross-site scripting (XSS) vulnerability in PG Matchmaking by injecting a script tag into the 'show' parameter of the browse_ladies.php page. The PoC uses a simple alert to display the user's cookies, proving arbitrary script execution.

This exploit demonstrates a cross-site scripting (XSS) vulnerability in PG Matchmaking by injecting a script tag into the 'id' parameter of the services.php page. The PoC uses a simple alert to display the user's cookies, proving the vulnerability.

This exploit demonstrates a cross-site scripting (XSS) vulnerability in PG Matchmaking by injecting a malicious script via the 'show' parameter in the URL. The script executes arbitrary JavaScript in the context of the affected site, potentially stealing cookies.