Some times ago I found a Cross Site Scripting vulnerability in MessengerFX, a popular web-based Windows Live Messenger client. Friday I received from the team saying that the problem is now corrected:
First of all i want to thank you for your warn. We fixed that problem and
now its working correctly.
If you find any other problem please let me know. Thanks again.
It was serious :