Stud.IP Cross-Site Scripting Vulnerability

Stud.IP is an open source learning and information management system for universities, education and applications from Sourceforge. A cross-site scripting vulnerability exists in Stud.IP versions prior to 5.3.4, 5.2.6, 5.1.7, and 5.0.9, which stems from the fact that uploadaction, editaction in t...