Cross-site scripting (XSS) vulnerability in iFdate 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) username, (2) password fields, or certain other input text boxes.
https://exchange.xforce.ibmcloud.com/vulnerabilities/26678
http://www.vupen.com/english/advisories/2006/1987
http://www.securityfocus.com/bid/18102
http://www.securityfocus.com/archive/1/435010/100/0/threaded