MidnightBSD

Advisories for xycms_project

CVE-2018-14686 MEDIUM

system/edit_book.php in XYCMS 1.7 has stored XSS via a crafted add_do.php request, related to add_book.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
xycms_project xycms 1.7