CVE-2018-11487
CVE-2018-11487 affects PHPMyWind 5.5 with reflected Cross-Site Scripting (XSS) via the cid parameter to newsshow.php or via a query string to news.php or about.php. The vulnerability allows an attacker to inject and execute script in a victim’s browser when the affected pages are loaded. Root cau...