PT-2018-9852 · Wuzhi · Wuzhi Cms
Starnightcyber
·
Published
2018-04-25
·
Updated
2025-05-05
·
CVE-2018-10367
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
WUZHI CMS version 4.1.0
Description:
An issue was discovered in the content-management feature, which has Stored XSS via the
title or content section.Recommendations:
For WUZHI CMS version 4.1.0, update to a newer version that contains a fix for this issue, if available. As a temporary workaround, consider restricting user input in the
title and content sections to minimize the risk of exploitation.Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wuzhi Cms