CVE-2018-12273by Jeremyin Security Bulletinson Posted on June 13, 2018 The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter.