PHP-Proxy up to and including 5.1.0 has Cross-Site Scripting (XSS) via the URL field in index.php.
php-proxy php-proxy