Zoph versions prior to 0.8.0.3 and 0.8.1.1 suffer from cross site scripting vulnerabilities.
990527c729b04c8edb656822e7259ef8d0c7f9140c6abfd9612079b9cda777e5
VUPEN Web Vulnerability Research Team discovered multiple vulnerabilities in eFront. These issues are caused by input validation errors when processing the "remote_theme", "name", "system_email", "password_length", "math_server", "site_motto" and "site_name" parameters, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site. Versions prior to 3.6.3 build 7400 are affected.
1104801d6660f352341d2255e224ec704f33018e832b6a8a32964aa0a77e692e
Cacti versions 0.8.7e and below suffer from multiple cross site scripting vulnerabilities.
ebd3f27e43509f5b9afa098f1d4518b1d3378e5d4aabf3511489015a7d125a5e