Vulnerabilities > Hgw168Cc

DATE CVE VULNERABILITY TITLE RISK
2019-09-09 CVE-2019-16130 Cross-site Scripting vulnerability in Hgw168Cc Yii-Cms 1.0
YII2-CMS v1.0 has XSS in protected\core\modules\home\models\Contact.php via a name field to /contact.html.
network
low complexity
hgw168cc CWE-79
6.1