Crossite scripting, unauthorized access to few configuration pages.
vulners.com/securityvulns/securityvulns:doc:4886