CVE-2018-12623
Eventum 3.5.0 is affected by a cross-site scripting (XSS) vulnerability in htdocs/switch.php via the current_page parameter. Public sources (NVD) describe the issue and assign CVE-2018-12623 with a CVSS v2 base score of 4.3 (medium) and CVSS v3 base score of 6.1 (medium); attack requires no user ...