CVE-2018-12695
mao10cms 6 contains a cross-site scripting (XSS) vulnerability exploitable via the m=bbs&a=index page. The issue is documented across multiple sources (CNVD-2018-12044, NVD entry CVE-2018-12695) and is described as allowing injection of arbitrary web script or HTML. The concrete vulnerability det...