CVE-2017-7250
CVE-2017-7250 concerns Gazelle (a BitTorrent tracker web framework). The vulnerability is a Cross-Site Scripting (XSS) flaw caused by insufficient filtration of user-supplied data (action) passed to Gazelle-master/sections/tools/finances/bitcoin_balance.php. An attacker could execute arbitrary HT...