CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework (prototypejs) before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors.
Date published : 2009-09-13
https://seclists.org/bugtraq/2019/May/18
http://github.com/sstephenson/prototype/blob/master/CHANGELOG