Cross-site scripting vulnerability in the addshiti_post function on the YxtCMF ShitiController.class.php page
YxtCMF Yi Xue Tang Online Learning System is an online learning platform system developed with thinkphp+bootstrap as the framework. A cross-site scripting vulnerability exists in the addshitipost function on the YxtCMF ShitiController.class.php page. An attacker can insert malicious js code into...