CVE-2018-13983 (impresscms)

ImpressCMS 1.3.10 has XSS via the PATH_INFO to htdocs/install/index.php, htdocs/install/page_langselect.php, or htdocs/install/page_modcheck.php.
Source: NIST
CVE-2018-13983 (impresscms)