2 matches found
CVE-2018-19227
An issue was discovered in LAOBANCMS 2.0. It allows XSS via the admin/liuyan.php neirong parameter...
CVE-2018-19227
LAOBANCMS 2.0 shows a cross-site scripting vulnerability via the admin/liuyan.php neirong[] parameter. Affected component is the LAOBANCMS content management system; root cause is inadequate input sanitization leading to XSS. CVSS v3 base score 5.4 (MEDIUM) with network access, low privileges, us...