CVE-2013-4880 in CMS
Summary
Cross-site scripting (XSS) vulnerability in core/admin/modules/developer/modules/views/add.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via the module parameter.
If you want to get best quality of vulnerability data, you may have to visit VulDB.