DedeCMS Cross-Site Scripting Vulnerability (CNVD-2019-01727)
DedeCMS is a PHP-based web content management system CMS. A cross-site scripting vulnerability exists in the /member/myfriend.php file in DedeCMS version 5.7 SP2, which can be exploited by remote attackers to inject arbitrary web script or HTML with the help of the 'fype' parameter...