Vanguard version 2.1 suffers from a cross site scripting vulnerability via a POST. Continue reading...