CVE-2020-18167
CVE-2020-18167 describes a cross-site scripting (XSS) vulnerability in LAOBANCMS v2.0. The issue allows remote attackers to execute arbitrary code by injecting commands into the paste/el Homepage Introduction field of the component at admin/info.php?shuyu. Multiple connected sources (NVD, Red Hat...