CVE-2014-1223

Telligent Evolution (controlpanel/loading.aspx) is affected by an XSS vulnerability due to improper filtering of the msg parameter. Versions affected include before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651. An attacker can inject arbitrary script/HTML via the msg...