/*

Ez Album (XSS) Script Injection Vulnerability

Discovered by : MizoZ
Contact : mizozx@gmail.com

Date : July 29 2009

Greetings : Moudi , Zuka, All friends

*/

We can inject  HTML Scripts from the add comment , not in the comment but in
the name input .
exemple : http://www.ajaxez.com/album/index.php?action=view&id=1242082839 #
you can see an alert of 1