CiviCRM 3.3.3 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46275/info CiviCRM is prone to multiple cross-site scripting vulnerabilities because they fail to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting user...