Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/72305
http://www.us-cert.gov/control_systems/pdf/ICSA-12-016-01.pdf
http://www.securityfocus.com/bid/51375
http://www.cogentdatahub.com/ReleaseNotes.html
http://secunia.com/advisories/47525
http://secunia.com/advisories/47496