Cross-site scripting (XSS) vulnerability in SnapStream PVS LITE allows remote attackers to inject arbitrary web script or HTML via a GET request containing a terminating '"' (double quote) character.
https://exchange.xforce.ibmcloud.com/vulnerabilities/14164
http://securitytracker.com/id?1008646