CVE-2008-3596
The CVE-2008-3596 entry describes a Cross-site Scripting (XSS) vulnerability in Harmoni prior to version 1.4.7. The flaw arises from the Username field, which is logged and could be rendered in an administrator view, enabling remote attackers to inject arbitrary web script or HTML. The available ...