Discovered By : Arsalan Emamjomehkashan admin (at) arsalank (dot) com [email concealed] aeries browser interface(ABI) 3.8.2.8 XSS Website:http://aeries.com/ Login on it add a new event with <script>alert("xss)</script> and it will work each time you load your homepage -------------------------------- Aria-Security Team httP://Aria-Security.Net