Lhackl-007

**Name of the Vulnerable Software and Affected Versions** Unioncms version 1.0.13 **Description** The issue is related to a stored cross-site scripting (XSS) vulnerability. This vulnerability occurs via the Default settings, allowing potential attackers to inject malicious scripts into the application. **Recommendations** For Unioncms version 1.0.13, update the software to a version that fixes the stored XSS vulnerability, or as a temporary workaround, consider restricting access to the Default settings to minimize the risk of exploitation.