CVE-2017-6395
CVE-2017-6395 affects HashOver 2.0. The issue stems from insufficient filtration of user-supplied data passed to the hashover/scripts/widget-output.php URL, enabling an attacker to execute arbitrary HTML and script in the context of the vulnerable website via a cross-site scripting vulnerability....