Secunia Security Advisory – Hernan Jais has discovered multiple vulnerabilities in OCS Inventory NG, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85640/sa38311.txt
Source: https://packetstormsecurity.com/files/85640/Secunia-Security-Advisory-38311.html