PizzaInn version Beta 3 suffers from a persistent cross site scripting vulnerability in categories-exec.php.