CVE-2017-6491
CVE-2017-6491 concerns EPESI 1.8.1.1. The vulnerability stems from multiple XSS issues caused by insufficient filtration of user-supplied data (tooltip_id, callback, args, cid) passed to the EPESI-master/modules/Utils/Tooltip/req.php URL. Exploitation could allow an attacker to inject and execute...