2007-02-28 16:00:00
mitre
PUBLISHED
WebAPP before 0.9.9.5 passes (1) Unused Informations and (2) the username through Edit Profile forms, which has unknown impact and attack vectors.