The Web UI in Metasploit 4.1.0 suffers from a stored cross site scripting vulnerability. The vulnerability was discovered by “Stefan Schurtz” The vulnerability has been described as a “vulnerability” in the Web UI of the MetasPloit version 4.0.0 Web UI Cross Site Scripting vulnerability. For confidential support on this vulnerability, contact the vulnerability center at http://www.vulnerabilitycenter.com/vulnerability-reporting-blaming-report.
Source: https://thehackernews.com/2011/10/metasploit-410-web-ui-cross-site.html