CVE-2019-18816

Moderate 6.1

po-admin/route.php?mod=post&act=edit in PopojiCMS 2.0.1 allows post[1][content]= stored XSS.

Published November 7, 2019.

Affected software