Cross Site Scripting (XSS) exists in Jamroom prior to 4.2.7 via the Status Update field.
jamroom jamroom