Cetelem Online bank suffers from cross site scripting and clickjacking vulnerabilities. The vendor had not responded to the researcher after multiple attempts to reach them. The CSIRT team for the bank notified Packet Storm on 10/14/2013 that the issues have been remediated.
725a5580019aaa28e98f7d7843da1fbb140cb6edd882ae4285924205b58a8f7d