Cross-site scripting (XSS) vulnerability in Zoho NetFlow Analyzer build 10250 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
http://www.securitytracker.com/id/1032516
http://www.securityfocus.com/bid/75071