An independently managed application which allows Facebook users to place their music onto their profiles.
It has 547,534 monthly active users
LINK :http://www.facebook.com/?ref=logo#!/apps/application.php?id=2436915755&v=info&ref=appd
Another Xss vuln found :)
The steps are
1.http://apps.facebook.com/stevenlu/?tab=index&display=add
2.http://apps.facebook.com/stevenlu/?tab=index&display=add&method=youtube&confirm&videoId=SgM3r8xKfGE
Once done go on with your xss scripts :D
for example :
">< script>alert("w00t")< /script>
here is screen shot :
