Cross-site scripting vulnerability in phpwcms (CNVD-2018-13849)
phpwcms is an open source web content management system. A vulnerability exists in phpwcms version 1.8.9. A remote attacker can obtain the installation path of a website via an invalid cross-site scripting injection value...