CVE-2018-18927
CVE-2018-18927 concerns PublicCMS V4.0 where an XSS vulnerability exists in the page_list attachment attribute. The issue arises when the value of the page_list "attached" field (often containing class="icon-globe icon-large") can be manipulated to inject script, as demonstrated by the statement:...