Cross Site Scripting (XSS) Vulnerable POST variable

Cross Site Scripting (XSS) Vulnerable POST variable subscription-firstname

What does this mean?

Can be used in order to grab cookies, cause run-by attacks, phishing, browser based exploitation or tabnabbing.

It's verry annoying that I don't know how to fix this critical problem detected.

Cheers,
Hasan