CVE-2021-31280
CVE-2021-31280 affects tp5cms prior to or through 2017-05-25. The issue is a cross-site scripting (XSS) vulnerability in admin.php/system/set.html exploitable via the keywords parameter. The related Red Hat/NVD/EU references corroborate an XSS in tp5cms with the same endpoint and parameter. CVSS ...