Cross-site scripting (XSS) vulnerability in DUware DUforum 3.0 through 3.1 allows remote attackers to inject arbitrary web script or HTML via via the message text.Referenceshttp://www.securityfocus.com/bid/11363http://www.securitytracker.com/alerts/2004/Oct/1011595.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17681http://www.osvdb.org/10667
