MyHeritage is a family-oriented social network service and genealogy website. It allows members to create their own family websites, share pictures and videos, organize family events, create family trees, and search for ancestors.
Hacker found xss vulnerabilities in multiple pages. Interestingly, the vulnerability is Persistent one. Loading this page"http://www.myheritage.com/site-183672172/styles?popup=4%2C+5547469671#notificationPanelAnchor" will show the pop up box.
Livemocha is a commercial online language learning community, providing instructional materials in 38 languages and a platform for speakers to interact with and help each other learn new languages.LiveMocha is vulnerable to Non-Persistent attack.
Poc:
http://www.livemocha.com/userplane/frames?ext=html&is_src_user=true&strDestinationUserID=%22%22%3E%3Cscript%3Ealert%28%22hello%22%29%3C/script%3E&frameTarget=/userplane/wm
