CVE-2009-4567
Viscacha 0.8 Gold is affected by multiple XSS vulnerabilities in editprofile.php (profile2 action). Specifically, the parameters (1) skype, (2) yahoo, (3) aol, (4) msn, and (5) jabber can be abused to inject arbitrary web script/HTML. The issue is exploitable by remote authenticated users, but th...