Hi list, there is a XSS in Zwahlen's Online Shop. I can only test the free version, but i think, other versions may be vulnerable, too. http://host/article.htm?cat=<script>alert("fix your bugs!")</script> Kind Regards MC.Iglo