E107 · E107 · CVE-2018-17423
**Name of the Vulnerable Software and Affected Versions**
e107 version 2.1.9
**Description**
An issue was discovered that allows for a XSS attack. The attack is specifically targeted at the e107 admin/comment.php endpoint.
**Recommendations**
For version 2.1.9, update to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.