CVE-2018-8078
CVE-2018-8078 affects YzmCMS 3.7, where a Stored XSS vulnerability exists in the title parameter of advertisement/adver/edit.html. The root cause is unescaped user input in the title field, enabling arbitrary script/HTML injection. Documented impact is XSS with low to medium severity depending on...