EPSS
Percentile
48.6%
lin_cms_flask is vulnerable to cross-site scripting (xss). The vulnerability exists due to the lack of sanitization of user name in the register() function which will execute the script in the logs() function.
register()
logs()
github.com/TaleLin/lin-cms-flask/issues/28