CVE-2019-8938
CVE-2019-8938 affects VertrigoServ 2.17 and is a cross-site scripting (XSS) vulnerability exposed via the /inc/extensions.php?ext parameter. The root cause, as described in the sources, is improper handling/validation of the ext parameter, allowing injected script code to be reflected/executed. I...