CVE-2010-0615
EvalSMSI 2.1.03 contains a Cross‑Site Scripting (XSS) vulnerability in assess.php, exploitable via the reports comment box in the continue_assess action. The issue allows injection of arbitrary web script/HTML. Details indicate a client-side impact with potential partial integrity impact, and the...