Xiaoxierheao

Name of the Vulnerable Software and Affected Versions: XYHCMS version 3.6 Description: The issue is related to a stored cross-site scripting (XSS) vulnerability. It affects the component xyhai.php?s=/Link/index. Recommendations: For XYHCMS version 3.6, update to a version that includes a fix for this issue, as no specific workaround is provided for this version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZrLog version 2.1.1 **Description** A Stored XSS issue was found in the article edit area, which could potentially allow malicious scripts to be stored and executed. **Recommendations** For ZrLog version 2.1.1, update to a newer version that contains a fix for this issue, if available. As a temporary workaround, consider restricting access to the article edit area to minimize the risk of exploitation.