CVE-2018-19433

ShowDoc 2.4.1 has XSS via the lang parameter because install/database.php mishandles the $cur_lang value.

Date published : 2018-11-22

https://github.com/star7th/showdoc/issues/392