Cross-site Scripting (XSS)

github.com/koding/koding is vulnerable to cross-site scripting XSS attacks. A malicious user can inject and execute arbitrary Javascript through the status bar filepath variable...