CVE-2018-25090 — An unauthenticated remote attacker can use an XSS attack due to improper neutralization of input during web page generation. User interaction is required. This leads to a limited impact of confidentia — CVE Database · The Intelligence Room