CVE-2015-9260: Reflected XSS in BEdita CMS