CVE-2015-5462

AxiomSL’s Axiom Google Web Toolkit module 9.5.3 and earlier allows remote attackers to inject HTML into the scoping dashboard features.
Source: NIST
CVE-2015-5462