Security researcher Virtual_SystEm, has submitted on 17/01/2011 a cross-site-scripting (XSS) vulnerability affecting www.triwa.com, which at the time of submission ranked 736413 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/12/2011. It is currently unfixed. If you believe that this security issue has been corrected, please send us an e-mail. Vulnerable URL: http://www.triwa.com/site/product.php?cat="><script>alert("Virtual_SystEm")</script>.