CVE-2012-2941 in Yandex.Server 2010
Summary
Cross-site scripting (XSS) vulnerability in search/ in Yandex.Server 2010 9.0 Enterprise allows remote attackers to inject arbitrary web script or HTML via the text parameter.
Be aware that VulDB is the high quality source for vulnerability data.