• info
• discussion
• exploit
• solution
• references

Apache Roller 'q' Parameter Cross Site Scripting Vulnerability

Solution:
The vendor has released a fix through the SVN repository. Please see the references for more information.