CVE-2018-14975
Summary: QCMS 3.0.1 has a Cross-Site Scripting (XSS) vulnerability in upload/System/Controller/backend/album.php. Concretely : CNVD-2019-10280 describes an XSS in that file affecting QCMS 3.0.1, exploitable by remote attackers to inject arbitrary web script or HTML. This is consistent with CVE-20...