Cross-site scripting (XSS) vulnerability in admin/modify.php in Sam Crew MyBlog remote attackers to inject arbitrary web script or HTML via the id parameter.Referenceshttp://securityreason.com/securityalert/2549http://www.securityfocus.com/archive/1/464712/100/0/threaded
