Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page.