EPSS
Percentile
24.8%
A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the βNew Articleβ field under the βArticleβ plugin.
sourceforge.net/p/cszcms/tickets/2/