CVE-2007-4741

Name of the Vulnerable Software and Affected Versions: Claroline versions prior to 1.8.6

Description: A cross-site scripting (XSS) issue allows remote authenticated administrators to inject arbitrary web script or HTML via the sort parameter in the admin/adminusers.php file.

Recommendations: For versions prior to 1.8.6, update to version 1.8.6 or later to resolve the issue.