From full-disclosure  Sun Aug 30 13:09:02 2015
From: Jing Wang <justqdjing () gmail ! com>
Date: Sun, 30 Aug 2015 13:09:02 +0000
To: full-disclosure
Subject: [FD] KnowledgeTree OSS 3.0.3b Reflected XSS (Cross-site Scripting) Web Application 0-Day Security Bu
Message-Id: <CAFWG0-ix-ti0LSO-J0TCSKXXW29H7r__773QzbR=w0aMgFK5OA () mail ! gmail ! com>
X-MARC-Message: https://marc.info/?l=full-disclosure&m=144099659719456
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