There is a reflected XSS vulnerability in the following php code ./wordpress-mu-subdomain-forwarding/subdomain_forwarding.php: 247: <textarea name='subdf_profile_header' id='subdf_profile_header' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_header' ]; ?></textarea> 253: <textarea name='subdf_profile_footer' id='subdf_profile_footer' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_footer' ]; ?></textarea> 258: <textarea name='subdf_profile_heading_header' id='subdf_profile_heading_header' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_heading_header' ]; ?></textarea> 263: <textarea name='subdf_profile_heading_footer' id='subdf_profile_heading_footer' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_heading_footer' ]; ?></textarea> 268: <textarea name='subdf_profile_heading_content_header' id='subdf_profile_heading_content_header' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_heading_content_header' ]; ?></textarea> 273: <textarea name='subdf_profile_heading_content_footer' id='subdf_profile_heading_content_footer' rows='5' cols='45' style="width: 95%"><?php echo $_POST[ 'subdf_profile_heading_content_footer' ]; ?></textarea> The variable subdf_profile_header' ]; ?></textarea> 253: <textarea name='subdf_profile_footer' id='subdf_profile_footer' rows='5' cols='45' style="width: 95%"><?php echo $_ appears to send unsanitized data back to the users browser via POST request.