CVE-2015-1512
CVE-2015-1512 affects FancyFon FAMOC prior to version 3.17.4. The issue is cross-site scripting (XSS) that allows remote attackers to inject arbitrary script/HTML via user-supplied input in (1) LoginForm[username] to ui/system/login, (2) order, or (3) myorgs to index.php. The provided documents d...