S-CMS is a PHP and MySQL based content management system (CMS) from Zibo Shining Network Technology Co., Ltd. in China. A security vulnerability exists in S-CMS Government Station Building System v5.0, which can be exploited by attackers to perform cross-site scripting attacks (XSS).