Gazelle cross-site scripting vulnerability (CNVD-2017-05135)
Gazelle is a set of web frameworks for BitTorrent trackers. A cross-site scripting vulnerability exists in versions of Gazelle prior to 2017-03-19 that stems from the program failing to adequately filter the torrents and size parameters. A remote attacker could use this vulnerability to execute...