CVE-2012-6557

Multiple cross-site scripting XSS vulnerabilities in the AboutMe plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the 1 AboutMe/RealName, 2 AboutMe/Name, 3 AboutMe/Quote, 4 AboutMe/Loc, 5 AboutMe/Emp, 6 AboutMe/JobTit, 7 AboutMe/HS, 8 AboutMe/Col, ...