CVE-2012-1219
CVE-2012-1219 affects freelancerKit 2.35 with multiple XSS vulnerabilities. The issue allows remote attackers to inject arbitrary web script or HTML via 1) ticket parameter to tickets.php, 2) title parameter to notes.php, or 3) task parameter to todo.php. Root cause is input handling in these par...