CVE-2016-1143

Vine MV is affected by a Cross-Site Scripting (XSS) vulnerability in the file main.rb present in versions prior to 2015-11-08. The issue allows a remote attacker to inject arbitrary web script or HTML via unspecified vectors. Root cause is an XSS in Vine MV’s main.rb logic, with affected versions...