Unknown · Kippo-Graph · CVE-2016-2139
**Name of the Vulnerable Software and Affected Versions**
kippo-graph versions prior to 1.5.1
**Description**
The issue is related to a cross-site scripting vulnerability in the `$file link` variable within the `class/KippoInput.class.php` file.
**Recommendations**
For versions prior to 1.5.1, update to version 1.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `class/KippoInput.class.php` file to minimize the risk of exploitation.