CVE-2018-19469
CVE-2018-19469 affects ArticleCMS (versions up to 2017-02-19). The issue is a reflected XSS in the update_personal_infomation path, exploitable via the realname or email parameters. Root cause is unsanitized input being reflected back to the page, enabling script execution in a user’s browser. Do...