source: https://www.securityfocus.com/bid/22070/info The 'liens_dynamiques' program is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and launch other attacks. These issues affect version 2.1; other versions may also be affected. http://www.example.com/liens.php3?ajouter=1