Zhooooouo

Name of the Vulnerable Software and Affected Versions: CmsWing version 1.3.7 Description: The issue is a cross-site scripting vulnerability, specifically a stored XSS. It is triggered when an administrator accesses the content management module. Recommendations: For CmsWing version 1.3.7, consider disabling access to the content management module until a fix is available. Restrict administrator privileges to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CmsWing version 1.3.7 Description: The issue is a cross-site scripting vulnerability, specifically a stored XSS, which is triggered when visitors access the article module. Recommendations: For CmsWing version 1.3.7, consider disabling access to the article module until a patch is available to prevent exploitation of the stored XSS vulnerability.