PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field.Referenceshttps://gkaim.com/cve-2018-20636-vikas-chaudhary/
