CVE-2008-0867
BEA AquaLogic Interaction 6.1 MP1 and Plumtree Foundation 6.0 SP1 are affected by CVE-2008-0867, a Cross‑Site Scripting (XSS) flaw in portal/server.pt that allows injection of arbitrary web script or HTML via the name parameter. The vulnerability arises from handling user-supplied input in the po...