CVE-2018-19280

Centreon 3.4.x has XSS via the resource name or macro expression of a poller macro.

Source: CVE-2018-19280