Cross-site scripting (XSS) vulnerability in Parlano MindAlign 5.0 and later versions allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/21837
http://www.securityfocus.com/bid/14562
http://www.niscc.gov.uk/niscc/docs/br-20050812-00673.html?lang=en