paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.donate.php (id parameter).Referenceshttp://www.securityfocus.com/bid/96939https://github.com/paintballrefjosh/MaNGOSWebV4/issues/21
