CVE-2013-6880

Open redirect in proxy.php in FlashCanvas before 1.6 allows remote attackers to redirect users to arbitrary web sites and conduct cross-site scripting (XSS) attacks via the HTTP Referer header. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt