CVE-2017-7363
Pixie 1.0.4 is affected by a cross-site scripting (XSS) vulnerability in Pixie’s admin/index.php s=publish&m=module&x= flow. The root cause is improper validation of user-submitted input, enabling injection of arbitrary web script/HTML. Impact: potential for session hijacking or defacement as des...