Cross site scripting in mephisto 0.7.3

security advisory

References:
http://www.mephistoblog.com
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1873

Description:
Cross site scripting describes attacks that allow to insert malicious
html or javascript code via get or post forms. This c...

[ more ]