CVE-2018-12944
SeedDMS (formerly LetoDMS/MyDMS) is affected by a persistent XSS in the Categories feature. The vulnerability is in the name field and affects SeedDMS versions prior to 5.1.8. Exploitation details are not provided in the available documents.