CVE-2020-21504

Name of the Vulnerable Software and Affected Versions: waimai Super Cms version 20150505

Description: The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability is located in the /admin.php?&m=Public&a=login component. Cross-site scripting (XSS) is a type of security vulnerability that allows an attacker to inject malicious scripts into a website, potentially allowing them to steal user data or take control of the user's session.

Recommendations: For waimai Super Cms version 20150505, consider disabling access to the /admin.php?&m=Public&a=login component until a fix is available. Restricting access to this component can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.