CVE-2016-4855 in ADOdb
Summary
Cross-site scripting vulnerability in ADOdb versions prior to 5.20.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Once again VulDB remains the best source for vulnerability data.