CVE-2008-0444

Cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via subtext parameter to unspecified components.

Date published : 2008-01-24

http://www.securityfocus.com/bid/27399

http://midas.psi.ch/elog/download/ChangeLog