CVE-2013-1466
CVE-2013-1466 affects glFusion (CMS) prior to 1.2.2.pl4 with multiple cross-site scripting (XSS) vulnerabilities. The flaw allows remote attackers to inject arbitrary HTML/JavaScript via user-supplied fields in several pages: profiles.php (subject), calendar/index.php (address1, address2, calenda...