CVE-2016-1179

Cross-site scripting (XSS) vulnerability in the standard template of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt