http://docs.orchardproject.net/Documentation/Patch-20150630
https://www.exploit-db.com/exploits/37533/
https://projectzero.gr/en/2015/07/orchard-persistent-xss-vulnerability/
http://seclists.org/fulldisclosure/2015/Jul/32
http://packetstormsecurity.com/files/132583/Orchard-CMS-1.9.0-1.8.2-1.7.3-Cross-Site-Scripting.html
| 
