Summary: GForge Advanced Server 6.4.4 allows XSS via the commonsearch.php words parameter, as demonstrated by a snippet/search/?words= substring.Published: Sunday, March 24, 2019 - 23:29cvss: