CVE-2008-3758
CVE-2008-3758 involves multiple XSS vulnerabilities in Lussumo Vanilla 1.1.4 and earlier. The affected application is the Lussumo Vanilla content management system. The issues allow remote attackers to inject arbitrary web script or HTML via the NewPassword parameter to people.php , and allow rem...