CVE-2018-16346
ChemCMS 1.0.6 is affected by a Cross-Site Scripting (XSS) vulnerability exploitable via the Settings → Site Info field. Connected CNVD and NVD records confirm the vulnerability affecting version 1.0.6 and describe the attack as injecting/executing JavaScript through the Site Info setting; no patc...