eyeOS callback Cross Site Scripting Exploit

A reflected cross-site scripting vulnerability in eyeOS 2.3 can be exploited to execute arbitrary JavaScript.
Vulnerabilty ID: 
NOCVE-9999-47772
Released Date: 
Tuesday, May 17, 2011 - 19:00