Cross-site scripting (XSS) vulnerability in CGI RESCUE Trees before 2.11 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.Referenceshttp://secunia.com/advisories/35123http://jvn.jp/en/jp/JVN28521500/index.htmlhttp://www.securityfocus.com/bid/34999http://osvdb.org/54545http://www.rescue.ne.jp/whatsnew/blog.cgi/permalink/20090512155247https://exchange.xforce.ibmcloud.com/vulnerabilities/50579http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000028.html
