Atom CMS v2.0 exists to contain a reflected cross-site scripting (XSS) vulnerability via the "A" parameter in /widgets/debug.php.
thedigitalcraft atomcms 2.0