John CMS versions 1.0 through 5.1 suffer from a persistent cross site scripting vulnerability…. John CMS versions 1.0 through 5.1 suffer from a persistent cross site scripting vulnerability.

Read more http://packetstormsecurity.com/files/123136/johncms-xss.txt