CVE-2018-14970
CVE-2018-14970 affects QCMS 3.0.1, with a cross-site scripting (XSS) flaw in upload/System/Controller/backend/slideshow.php. The connected sources (CNVD, NVD, CVE listings) confirm the vulnerable component/file and the underlying issue is XSS, but do not provide exploit details, affected versions...