Cross-site scripting (XSS) vulnerability in Flock Browser 3.0.0.3989 allows remote malicious users to inject arbitrary web script or HTML via a crafted bookmark.
source: wwwsecurityfocuscom/bid/42556/info
Flock Browser is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input
Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie ...