CVE-2019-8391
qdPM 9.1 suffers from Cross-site Scripting (XSS) via configuration?type=[XSS] parameter.
Date published : 2019-05-14
https://www.exploit-db.com/exploits/46398/
http://packetstormsecurity.com/files/151723/qdPM-9.1-Cross-Site-Scripting.html