CVE-2018-14512
The CVE-2018-14512 issue affects WUZHI CMS 4.1.0 . A persistent XSS exists in the API endpoint captured as index.php?m=core&f=set&v=sendmail, triggered when the administrator accesses the system settings - mail server screen. The vulnerability is exploitable via the form[nickname] parameter, allo...