XYCMS Cross-Site Scripting Vulnerability
XYCMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in the system/editbook.php file in XYCMS version 1.7. A remote attacker can exploit this vulnerability by sending a specially crafted request to adddo.php to inject arbitrary web script or HTM...