Stored Cross-Site Scripting Vulnerability in aitecms Message Service
AIT aitecms to php + MySQL aitecms core for the development of customer information management system. A stored cross-site scripting vulnerability exists in the 'diy.php' message of aitecms. An attacker can insert malicious code into the page to obtain user cookies and other information, leading ...