CVE-2018-16450
CVE-2018-16450 concerns CraftedWeb, a CMS for game servers, with a reflected XSS vulnerability in the p parameter affecting versions up to 2013-09-24. The issue is caused by improper input handling that allows injected scripts/HTML to be returned in responses. Public details consistently describe...