First published: Wed Nov 07 2018(Updated: )
An issue was discovered in YzmCMS v5.2. It has XSS via a search/index/archives/pubtime/ query string, as demonstrated by the search/index/archives/pubtime/1526387722/page/1.html URI. NOTE: this does not obtain a user's cookie.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Yzmcms Yzmcms | =5.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.