Cross-site scripting (XSS) vulnerability in blog.php in OdysseusBlog allows remote attackers to inject arbitrary web script or HTML via the page parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/30333
http://www.attrition.org/pipermail/vim/2007-January/001250.html