一剑还原

**Name of the Vulnerable Software and Affected Versions** Mingsoft MCMS versions up to 5.3.1 **Description** A problematic vulnerability has been found in Mingsoft MCMS, affecting an unknown part of the file `search.do` of the component HTTP POST Request Handler. The manipulation of the argument `style` leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Mingsoft MCMS versions up to 5.3.1, apply a patch to fix this issue. As a temporary workaround, consider restricting access to the `search.do` file or disabling the manipulation of the `style` argument in the HTTP POST Request Handler to minimize the risk of exploitation.