Cross-site scripting (XSS) vulnerability in php/user_account.php in Silver Peak VX before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.Referenceshttp://www.kb.cert.org/vuls/id/867980http://www.securityfocus.com/bid/68923
