CVE-2012-6705

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

CVE-2012-6705

CPE/affected software: Jamroom (prior to 4.2.7). Vulnerability: Cross-Site Scripting (XSS) via the Status Update field. Root cause / vector: inputs in the Status Update field are susceptible to script/HTML injection. Impact (as stated): XSS exists in Jamroom before 4.2.7; detailed exploit scenari...