CVE-2018-10570
CVE-2018-10570 affects Frog CMS 0.9.5. The vulnerability is a Cross-Site Scripting (XSS) flaw in /install/index.php via the ['config']['admin_username'] field. CNVD notes that an attacker could inject arbitrary web script or HTML, implying a client-side impact on affected sessions/pages. The Red ...