CVE-2015-5399
CVE-2015-5399 affects PHPVibe, a PHPCMS, where versions before 4.21 are vulnerable to a stored XSS in comments. The root cause is untrusted user input being accepted in comments and then rendered, allowing remote authenticated users to inject arbitrary script/HTML. Public references describe the ...