The Sophos Web Appliance prior to 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342.
sophos web appliance