Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.
status statusnet