Description - Referer XSS in E-Blah Platinum
Cross Site Scripting found in E-Blah Platinum script.
Vulnerable script: Code/Routines.pl
Environment variable 'HTTP_REFERER' isn't properly sanitized. This can be used to post HTTP query with fake Referer value which may contain arbitrary html or script code. This code will be executed when administrator will open "Click Log".
Administrator's login and password are threatened.
Order Source Code Testing
Check your website by source code analysis of your site made by Aliaksandr Hartsuyeu.The order will be done by experts in website security.