CVE-2017-6396
The CVE-2017-6396 entry concerns WPO-Foundation WebPageTest 3.0, where insufficient filtration of user-supplied data passed to webpagetest-master/www/compare-cf.php enables an attacker to execute arbitrary HTML/JavaScript in a victim browser (XSS). The vulnerability affects the specific URL path ...