CVE-2015-9260
CVE-2015-9260 affects BEdita prior to 3.7.0. A cross-site scripting (XSS) vulnerability is triggered via a crafted pages/showObjects URI, demonstrated by appending a payload to pages/showObjects/2/0/0/leafs. Technical details in connected sources confirm the vulnerability exists in versions befor...