CVE-2019-8436by Jeremyin Security Bulletinson Posted on February 18, 2019 imcat 4.5 has Stored XSS via the root/run/adm.php fm[instop][note] parameter.