Adrian Kress identified a XSS vulnerability in the unified event platform MobiCall.