Vanilla 1.1.4 HTML Injection and Cross-Site Scripting Vulnerabilities

Bugtraq ID:	30748
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Aug 19 2008 12:00AM
Updated:	Aug 28 2008 03:44AM
Credit:	James Bercegay of the GulfTech Security Research Team
Vulnerable:	Lussumo Vanilla 1.1.4 Lussumo Vanilla 1.1.3 Lussumo Vanilla 1.0.1 Lussumo Vanilla 1.0

Not Vulnerable:	Lussumo Vanilla 1.1.5 RC1