ajaxnetprofessional is vulnerable to cross-site scripting attacks. The vulnerability exists due to lack of input validation in parse
function of AjaxPro/core.js
in when parsing json input which allows a malicious attacker to inject and execute arbitrary javascript.