Cross-site scripting (XSS) vulnerability in HP Version Control Repository Manager (VCRM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
http://www.securityfocus.com/bid/44431
http://securitytracker.com/id?1024644