CVE-2017-17904
FS Lynda Clone is affected by a cross-site scripting (XSS) vulnerability CVE-2017-17904. The issue arises via the keywords parameter to tutorial/ and the edit_profile_first_name parameter to user/edit_profile, enabling injected scripts to run in a victim’s browser. Sources confirm the vulnerabili...