Sitelock has informed me that there are some cross script vulnerabilites attached to some of the Add to Cart buttons on this site http://www.luckystarsdance.com/classes/spring-class-schedule/.
Here is one example of sitelock report...
URL:http://www.luckystarsdance.com/classes/spring-class-schedule/?%3D1%26Add to Cart%3DAdd to
Cross site scripting vulnerability found in args:,Add%20to%20Cart,addcart,cartLink,price,product,product_tmp,quantity
Has anyone else experienced this and know how to fix?
What is weird is that it is only reporting the vulnerability with a few of the buttons.