Cross-site scripting (XSS) vulnerability in BusinessFlow/login in AlgoSec Firewall Analyzer 6.4 allows remote attackers to inject arbitrary web script or HTML via the message parameter.Referenceshttp://packetstormsecurity.com/files/122899/algosec64-xss.txthttp://www.osvdb.org/96807
