CVE-2015-9285

esoTalk 1.0.0g4 has XSS via the PATH_INFO to the conversations/ URI.
Source: NIST
CVE-2015-9285