5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.8%
A cross site scripting (XSS) vulnerability in Catfish CMS 4.9.90 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the βannouncement_gonggaoβ parameter.