Cross-site scripting (XSS) vulnerability in SemanticScuttle before 0.90 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the (1) username and (2) profile page.Referenceshttp://secunia.com/advisories/32722https://exchange.xforce.ibmcloud.com/vulnerabilities/46754http://www.securityfocus.com/bid/32409http://sourceforge.net/project/shownotes.php?release_id=640424
