Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in AOM Software Beex 3 allow remote attackers to inject arbitrary web script or HTML via the navaction parameter to 1 news.php and 2 partneralle.php...