cross-site scripting vulnerability in ViewCVS 0.9.2- cross-site scripting vulnerability in ViewCVS 0.9.2-