CVE-2018-12623 (eventum)

An issue was discovered in Eventum 3.5.0. htdocs/switch.php has XSS via the current_page parameter.
Source: NIST
CVE-2018-12623 (eventum)