Web administration system log crossite scripting thorugh username.
vulners.com/securityvulns/securityvulns:doc:13470