Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote malicious users to execute arbitrary script as other users via the query string to ISAPISkeleton.dll.
source: wwwsecurityfocuscom/bid/9516/info
BRS WebWeaver has been reported prone to a cross-site scripting vulnerability An attacker may create a malicious link to the vulnerable server that includes embedded HTML and script code If this link is followed by a victim user, hostile code embedded in the link may be rendered in the user's br ...