CVE List

CVE-2021-39499

Moderate 6.1

A Cross-site scripting (XSS) vulnerability in Users in Qiong ICP EyouCMS 1.5.4 allows remote attackers to inject arbitrary web script or HTML via the `title` parameter in bind_email function.

Published September 7, 2021.

Affected software

Get alerts for Eyoucms Eyoucms

Reference links