Secunia Security Advisory – Russ McRee has reported a vulnerability in dradis, which can be exploited by malicious people to conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/89694/sa39875.txt
Source: https://packetstormsecurity.com/files/89694/Secunia-Security-Advisory-39875.html