source: https://www.securityfocus.com/bid/12097/info
WPKontakt is reported prone to a potential script execution vulnerability. It is reported that this issue may allow remote attackers to execute arbitrary script code on a vulnerable computer, which may lead to various attacks. Arbitrary script code may be executed on a target system in the event that a specially message containing a specially malformed email address containing a JavaScript URI is received.
test@"style="background-image:url(javascript:alert(%22You%20are%20owned!%22>))".wp.pl
