Lzlzh2016

**Name of the Vulnerable Software and Affected Versions** HongCMS version 3.0.0 **Description** The issue concerns a problem where crafted input can trigger a 404 HTTP status code, leading to XSS in the system/errors/404.php file of HongCMS. **Recommendations** For HongCMS version 3.0.0, update the system/errors/404.php file to properly handle and sanitize user input to prevent XSS attacks. As a temporary workaround, consider implementing input validation and sanitization for all user input to minimize the risk of exploitation.