CVE-2010-3023
CVE-2010-3023 involves multiple XSS flaws in DiamondList 0.1.6 (and possibly earlier). The vulnerabilities arise from insufficient input sanitization of (1) category[description] in user/main/update_category and (2) setting[site_title] in user/main/update_settings, not properly handled by the tem...