This is like my xss_header script except this one doesn't require any user interaction. The reason
I don't host a live version of this script is because it could be used maliciously. For any PoC
purposes the non-direct script is better as it shows what it's doing so the user learns from it.

Inside the archive is a php file which it only used to easily send the variables to the swf file.
The swf file is there which does the magic. And the fla file is there so you can look at the code
yourself.

Usage:
Supply this script parameters via the querystring.
key's name => HTTP header
key's value => HTTP headers value
xss_target = target page
so an example would be ?xss_target=http://www.cambiaresearch.com/cambia3/myuseragent/&User-agent=<script>alert('xss')</script>

Most likely you'll want to test any inputs in the non-direct version as you get feedback there.