Sdrac0Nidso

**Name of the Vulnerable Software and Affected Versions** ChemCMS version 1.0.6 **Description** The issue is related to a Cross-Site Scripting (XSS) problem. It occurs via the "setting -> website information" field, which allows for the injection of malicious scripts. **Recommendations** For ChemCMS version 1.0.6, ensure proper input validation and sanitization for the "setting -> website information" field to prevent XSS attacks. As a temporary workaround, consider restricting access to this field until a patch is available.