ocPortal 9.0.16 Cross Site Scripting

Exploit Title: ocPortal 9.0.16 Multiply XSS Vulnerabilities Google Dork: "Copyright c ocPortal 2011 " Date: 26-2-2015 Exploit Author: Dennis Veninga Vendor Homepage: http://ocportal.com/ Vendor contacted: 22-2-2015 Fix: http://ocportal.com/site/news/view/securityissues/xss-vulnerability-patch.htm...