CVE-2017-6907

Name of the Vulnerable Software and Affected Versions Open.GL versions prior to 2017-03-13

Description The issue exists due to insufficient filtration of user-supplied data passed to the "Open.GL-master/index.php" URL. This allows an attacker to execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

Recommendations For versions prior to 2017-03-13, consider implementing proper input validation and sanitization for user-supplied data to prevent code injection. As a temporary workaround, restrict access to the "Open.GL-master/index.php" URL until a fix is applied.