CVE-2011-5206 Information

Description

Cross-site scripting (XSS) vulnerability in notes.php in Rapidleech before 2.3 rev42 SVN r399 allows remote attackers to inject arbitrary web script or HTML via the notes parameter.

Reference

http://code.google.com/p/rapidleech/source/detail?r=399 http://code.google.com/p/rapidleech/source/diff?spec=svn399&r=399&format=side&path=/trunk/notes.php http://secunia.com/advisories/47434 https://exchange.xforce.ibmcloud.com/vulnerabilities/72072