Vulnerability detected in Sun Java System Web Server for causing cross-site scripting attacks
There are chances of cross site scripting attacks as vulnerability has been reported in Sun Java System web server. The vulnerability has been found out in case of Sun Java System Web Server 6.1 and 7.0. In this case unspecified inputs passed to the advanced search functionality may not be sanitized before being returned to the user and it could be exploited for execution of arbitrary HTML and script code in the browser session of affected site. You can download the patches out here.