CVE-2011-4193 Information

Description

Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted application related to cloning.

Reference

http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00015.html