SpringSource versions Hyperic HQ 3.2, 4.0, 4.1, and 4.2-beta1 suffer from a reflected cross site scripting vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81801/springsourceref-xss.txt
Source: https://packetstormsecurity.com/files/81801/SpringSource-Reflected-Cross-Site-Scripting.html