Epony4Co

Name of the Vulnerable Software and Affected Versions: Dhcms version 2017-09-18 Description: A Cross Site Scripting (XSS) issue exists in the guestbook via the message board, allowing a remote malicious user to execute arbitrary code. Recommendations: For Dhcms version 2017-09-18, as a temporary workaround, consider disabling the guestbook feature until a patch is available. Restrict access to the message board to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.