Cross-site scripting (XSS) vulnerability in liens.php3 in liens_dynamiques 2.1 allows remote attackers to inject arbitrary web script or HTML by using the ajouter=1 query string and the add menu.
https://exchange.xforce.ibmcloud.com/vulnerabilities/31528
http://www.securityfocus.com/archive/1/456986/100/0/threaded