CVE-2008-6170: Improper Neutralization of Input During Web Page Generation | Rapid7 Vulnerability Database