Vulnerabilities > Yunucms > Yunucms > 1.1.8

DATE CVE VULNERABILITY TITLE RISK
2019-01-04 CVE-2019-5311 Cross-site Scripting vulnerability in Yunucms 1.1.8
An issue was discovered in YUNUCMS V1.1.8.
network
yunucms CWE-79
4.3
4.3
2019-01-04 CVE-2019-5310 Cross-site Scripting vulnerability in Yunucms 1.1.8
YUNUCMS 1.1.8 has XSS in app/admin/controller/System.php because crafted data can be written to the sys.php file, as demonstrated by site_title in an admin/system/basic POST request.
network
yunucms CWE-79
4.3
4.3