OpenEMR pc_category Cross Site Scripting Exploit

OpenEMR fails to sanitize the pc_category parameter in interface/main/calendar/index.php leading to a Cross-Site Scripting vulnerability.
Platform: 
Vulnerabilty ID: 
NOCVE-9999-49218
Product Version: 
11.0
Released Date: 
Wednesday, September 7, 2011 - 00:00