Note:
This project will be discontinued after December 13, 2021. [more]
2010-09-24
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows remote attackers to inject arbitrary web script or HTML via the template argument to the /issue program.