Yourls · Yourls · CVE-2014-8488
**Name of the Vulnerable Software and Affected Versions**
Yourls version 1.7
**Description**
A cross-site scripting (XSS) issue exists in the administrator panel, specifically in the Shorten functionality, allowing remote attackers to inject arbitrary web script or HTML via a specially crafted URL.
**Recommendations**
For version 1.7, update to a newer version that contains a fix for this issue.