The Brick7 search engine suffers from multiple cross site scripting vulnerabilities. The vendor has not responded to the author for more than two months. Note that this advisory has site-specific information.
3dbced1ac11434f635065a12378197cc099a391f90a57d9c4d743660dc05b8f0
The Adult Webmaster Script from yagina.com saves password in a text file within the webroot.
76d4c25a5ff69a225d4172cd5b9894534ece17989a02c397b76a21fc2f21cfd3