Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer before
2.1.7 allow remote attackers to inject arbitrary web script or HTML via
unspecified vectors.
For Debian 7 Wheezy, these issues have been fixed in extplorer version 2.1.0b6+dfsg.3-4+deb7u2