CVE-2019-10016
CVE-2019-10016 affects GForge Advanced Server 6.4.4. The vulnerability is a cross-site scripting (XSS) flaw in the commonsearch.php code path, caused by inadequate filtering of user-submitted HTML in the words parameter. An attacker can remotely exploit the flaw by supplying crafted input via the...