Hi,
Bug #1484109 has been added tonight, mentioning a cross site security
vulnerability.
The poster refers to http://www.securityfocus.com/bid/21042/info.
Apart from the fact that I cannot reproduce the given proof-of- concept, I fail to see how this is supposed to be a vulnerability.
Robin