Stored Cross-site Scripting Vulnerability in yiifcms v1.5
yiifcms is a content management system CMS developed on the yii framework. A stored cross-site scripting vulnerability exists in yiifcms v1.5, due to the system failing to strictly filter nickname and personality signature input. Attackers can use this vulnerability to obtain COOKIE information, ...