CVE-2018-16637
Evolution CMS 1.4.x is affected by a stored cross-site scripting (XSS) vulnerability that can be triggered via the page weblink title parameter to the manager/ URI. The issue is documented as XSS (including advisories noting versions prior to 1.4.6 are affected). Remediation per the linked adviso...