CVE-2017-15648by Jeremyin Security Bulletinson Posted on October 20, 2017 In PHPSUGAR PHP Melody before 2.7.3, page_manager.php has XSS via the page_title parameter.