Cross-site scripting (XSS) vulnerability in recommend.php in Chipmunk Directory script allows remote attackers to inject arbitrary web script or HTML via the entryID parameter.Referenceshttp://www.securityfocus.com/bid/15149/http://marc.info/?l=bugtraq&m=112982490104274&w=2http://secunia.com/advisories/17283/http://securityreason.com/securityalert/96http://irannetjob.com/content/view/148/28/http://www.osvdb.org/20169https://exchange.xforce.ibmcloud.com/vulnerabilities/22823
