Next participant of the project is Ask search engine. It is one of the popular search engines.
The vulnerabilities are in Ask web search. These Cross-Site Scripting holes I found 10.05.2007.
The vulnerabilities are in qid and jss parameters:
Also page with html injection hole has PR5. So black seo guys will be happy.
Moral: searching in the web can be dangerous.
I prepared others holes at Ask.com. So wait for today’s bonus post .