CVE-2009-0307
Cross-site scripting XSS vulnerability in the "Customize Statistics Page" admin/statistics/ConfigureStatistics in the MDS Connection Service in Research in Motion RIM BlackBerry Enterprise Server BES before 4.1.6 MR5 allows remote attackers to inject arbitrary web script or HTML via the 1...