Eventum Cross-Site Scripting Vulnerability (CNVD-2019-39387)
Eventum is a defect tracking system. The system is used to track inbound technical support, organizational tasks, bugs, etc. A cross-site scripting vulnerability exists in the /htdocs/popup.php file in Eventum version 3.5.0. The vulnerability stems from a lack of proper validation of client-side...