CVE-2011-1714
The vulnerability is an XSS in QooxDoo’s jsonp_primitive.php (framework/source/resource/qx/test/jsonp_primitive.php) affecting QooxDoo 1.3 and possibly other versions, as used by eyeOS 2.2/2.3. The underlying issue is reflected script injection via the callback parameter. Current documents do not...