zzcms cross-site scripting vulnerability (CNVD-2019-13261)

ZZCMS is a content management system CMS by the ZZCMS team in China. A cross-site scripting vulnerability exists in the /uploadimgform.php file in ZZCMS version 8.3. A remote attacker can exploit this vulnerability to inject arbitrary HTML or web scripts with the help of the 'noshuiyin' parameter...

CVE-2018-17413

XSS exists in zzcms v8.3 via the /uploadimgform.php noshuiyin parameter...