poundland.co.uk
XSS vulnerability through store locator URL.
The store locator pages took strings directly from the URL, allowing malicious strings to be injected onto the page.
Reported about 10 years ago Fixed Unknown