EPSS
Percentile
24.8%
A stored cross-site scripting (XSS) vulnerability in the getClientIp function in /lib/tinwin.class.php of Chaoji CMS 2.39, allows attackers to execute arbitrary web scripts.
github.com/zhuxianjin/vuln_repo/blob/master/chaojicms_stored_xss.md