CVE-2018-20680
Frog CMS 0.9.5 contains a Cross-Site Scripting (XSS) vulnerability in the admin/?/page/edit/1 body field. The CNVD entry indicates a remote attacker can exploit by sending a request to that path with a crafted body to inject arbitrary script/HTML. Root cause: likely insufficient input sanitizatio...