Secunia Security Advisory – r0t has reported some vulnerabilities in ScareCrow, which can be exploited by malicious people to conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/42399/sa18084.txt
Source: https://packetstormsecurity.com/files/42399/Secunia-Security-Advisory-18084.html