CVE-2015-2294: Improper Neutralization of Input During Web Page Generation | Rapid7 Vulnerability Database