alf.io 代码注入漏洞

alf.io is open source ticket reservation system. A security vulnerability exists in versions prior to alf.io 2.0-M4-2304, which stems from an unsatisfactory neutralization of a special element used in the Engine template...