Stored cross-site scripting vulnerability in the study function on the YxtCMF CourseController.class.php page
YxtCMF Yi Xue Tang Online Learning System is an online learning platform system developed with thinkphp+bootstrap as the framework. A stored cross-site scripting vulnerability exists in the study function on the YxtCMF CourseController.class.php page. An attacker can insert malicious js code into...