This is a whitepaper that details identifying cross site scripting vulnerabilities in both the Neo and Matrix LMS codebase.
You can download it from the following link: https://packetstormsecurity.com/files/download/161461/neomatrix-xss.pdf
Source: https://packetstormsecurity.com/files/161461/Neo-LMS-Matrix-LMS-Cross-Site-Scripting.html