Cross-site scripting (XSS) vulnerability in the discussion board functionality for WebCT Campus Edition 4.1 allows remote attackers to inject arbitrary web script or HTML via the message field.Referenceshttp://www.securityfocus.com/archive/1/395544http://www.securityfocus.com/bid/13101
