yiqicms Cross-Site Scripting Vulnerability
yiqicms is a content management system CMS for marketing enterprise websites. A cross-site scripting vulnerability exists in the comment.php file in yiqicms 2016-11-20 and earlier versions, which stems from the program only applying a length restriction to $msgtitle, which can be exploited by a...