CVE-2015-2144
Issuetracker phpBugTracker is affected by multiple XSS vulnerabilities in versions before 1.7.0. Remote authenticated users can inject arbitrary script/HTML via several fields: project name (project.php), use_js (user.php and group.php), Description (status.php, severity.php), Regex (os.php), and...