EPSS
Percentile
45.5%
edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace.
cxsecurity.com/issue/WLB-2018070095
www.exploit-db.com/exploits/45003/