CVE-2013-5108
RockMongo 1.1.5 and earlier contain multiple cross-site scripting (XSS) vulnerabilities in the xn function. The issues allow remote attackers to inject arbitrary scripts via the (1) db parameter on the login page or (2) username parameter in login.index to index.php and other unspecified paramete...