Cross-site scripting (XSS) vulnerability in Webmatic before 2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/43115
http://www.valarsoft.com/index.php?page=home¬izie=si¬ID=154&singlenot=1&no_home=1#2