Dynamic Picture Frame is susceptible to a cross site scripting vulnerability.
79b8a3051849e286eaffb09a83d677cfb4b938ba2d87fe6dc114d04914a3266b
Vendor Site: http://abledesign.com/
Version affected: ???
Demo: http://abledesign.com/demo/pframe.php
Class: Input Validation Error
Overview: Dynamic Picture Frame is a PHP script which allows you to add a variety of picture frames of any size to images on your website. Dynamic Picture Frame fails to sufficiently sanitize user-supplied input data in "Image URL" text box by pressing the "submit" button.
Example:
1.<html><font color="Red"><b>XSS</b></font></html>
Discovered by: Joshua Morin (morin.josh@gmail.com)