Cross site scripting

Cross-site scripting XSS vulnerability in 1 addWeblog.php and 2 leaveComments.php in Destiney Rated Images Script 0.5.0 does not properly filter all vulnerable HTML tags, which allows remote attackers to inject arbitrary web script or HTML via Javascript in a DIV tag...