In GOD We Trust Kachal667 Under9round Team (KuT) Hi, Here's my(LrK) new advisory about PHP Website. PHP System - Input Data(simple XSS) vulnerabilities Date: 02/11/2005 Summary ------- PHP is a language for programming and it is very good language for portal programming. we se some portal with php like: PHPBB , PHPNuke and .... Details ------- If programmer is not professional, probably he will have make a mistake. if he dont stop some tages like: <script>alert(document.cookie)</script> <iframe src=http://eg.com/deface.htm> for fix it u should write simple code for stopping iframe or script or ... http://www.PHP.com Lone Rider Knight