2 matches found
CVE-2019-9661
Stored XSS exists in YzmCMS 5.2 via the admin/systemmanage/userconfigedit.html "value" parameter,...
CVE-2019-9661
CVE-2019-9661 describes a stored cross-site scripting (XSS) vulnerability in the YzmCMS 5.2 content management system. The flaw is reachable through the admin/system_manage/user_config_edit.html page via the value parameter, allowing injection of script/HTML. The connected records confirm the vul...