Unknown · Online Subtitles Workshop · CVE-2011-5185
**Name of the Vulnerable Software and Affected Versions**
Online Subtitles Workshop versions prior to 2.0 rev 131
**Description**
The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `comment` parameter in the video comments.php file.
**Recommendations**
For versions prior to 2.0 rev 131, update to version 2.0 rev 131 or later to resolve the issue.