CVE-2018-14686

CVE-2018-14686

EPSS 0.7%

system/edit_book.php in XYCMS 1.7 has stored XSS via a crafted add_do.php request, related to add_book.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/TonyKentClark/MyCodeAudit/blob/master/xycms%20%20v1.7