EPSS
Percentile
28.9%
An issue was discovered in PHPMyWind 5.5. The GetQQ function in include/func.class.php allows XSS via the cfg_qqcode parameter. This can be exploited via CSRF.
github.com/panghusec/exploit/issues/8