VisionSource CMS versions 0.6 and below suffer from cross site scripting flaws.
c059b2ab89d1d3daccd442ad939d4364b05dec802fd247b03dbde2ba925072f7
VisionSource CMS <= 0.6 XSS vectors
Discovered by: Nomenumbra
Date: 5/4/2006
impact:moderate (privilege escalation,possible defacement)
No data inside the user's profile is filtered thus allowing them to
embed malicious XSS vectors to potentially steal cookies.
Nomenumbra/[0x4F4C]