CVE-2017-6488
EPESI 1.8.1.1 is affected by multiple XSS vulnerabilities due to insufficient filtration of user-supplied data (visible, tab, cid) passed to EPESI-master/modules/Utils/RecordBrowser/Filters/save_filters.php. The flaws allow an attacker to inject arbitrary HTML/JavaScript into a victim’s browser i...