Description
Input passed to the "User-Agent" header parameter it isn't properly sanitised before being returned to the user on 404 or 500 error. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Confirmed in version MX 7. Other versions may also be affected.
Remediation
Contact the vendor for further information.
References
Related Vulnerabilities
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.22)
WordPress Plugin Amelia-Events & Appointments Booking Calendar Cross-Site Scripting (1.0.46)
WordPress Plugin Travel Management Privilege Escalation (1.5)
WordPress Plugin WordPress Calls to Action Multiple Vulnerabilities (2.3.7)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)