LiveZilla Server prior to 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header.
livezilla livezilla