YUNUCMS cross-site scripting vulnerability (CNVD-2019-00564)

YUNUCMS is China Yunyou YUNU network technology company of a set of open source enterprise station building content management system CMS. YUNUCMS1.1.8 version of the app/index/controller/Show.php file there is a cross-site scripting vulnerability, a remote attacker can send the 'cw' parameter to...

CVE-2019-5311

An issue was discovered in YUNUCMS V1.1.8. app/index/controller/Show.php has an XSS vulnerability via the index.php/index/show/index cw parameter...