Just two XSS holes. I only bothered releasing them because both microsoft and novell seemed to suffer a similar problem. I like to know about a hole no matter how small it is, if its in a product I use. Advisory www.cgisecurity.com/advisory/9.txt - zeno@cgisecurity.com NOTE: Novell issued a patch within a month of my findings. Patching information within advisory.
