Vulnerabilities > Chaoji CMS Project > Chaoji CMS > 2.39
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-14 | CVE-2020-19962 | Cross-site Scripting vulnerability in Chaoji CMS Project Chaoji CMS 2.39 A stored cross-site scripting (XSS) vulnerability in the getClientIp function in /lib/tinwin.class.php of Chaoji CMS 2.39, allows attackers to execute arbitrary web scripts. | 5.4 |