CVE-2017-6483
ATutor 2.2.2 is affected by multiple XSS issues due to insufficient filtration of user-supplied data passed to several pages, notably lang_code handling in themes/*/admin/system_preferences/language_edit.tmpl.php. The vulnerability enables an attacker to execute arbitrary HTML and script code in ...