Cross-site scripting (XSS) vulnerability in the Helpdesk in Logicampus before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/21687
http://www.securityfocus.com/bid/14472
http://sourceforge.net/project/shownotes.php?release_id=346801