poundland.co.uk
XSS vulnerability through store locator URL.
The store locator pages took strings directly from the URL, allowing malicious strings to be injected onto the page.
Reported almost 10 years ago Fixed Unknown