CVE-2012-1782 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in questions/ask in OSQA 3b allow remote attackers to inject arbitrary web script or HTML via the (1) url bar or (2) picture bar.

Reference

http://archives.neohapsis.com/archives/bugtraq/2012-02/0164.html http://www.securityfocus.com/bid/52184 http://www.vulnerability-lab.com/get_content.php?id=461 Multiple cross-site scripting (XSS) vulnerabilities in questions/ask in OSQA 3b allow remote attackers to inject arbitrary web script or HTML via the (1) url bar or (2) picture bar.