Design/Logic Flaw

2018-03-0419:29:00

PRIOn knowledge base

www.prio-n.com

0.008 Low

EPSS

Percentile

81.7%

In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter.

CPENameOperatorVersion
yzmcmseq3.6

CPE	Name	Operator	Version
	yzmcms	eq	3.6

References

github.com/ponyma233/YzmCMS/blob/master/YzmCMS_3.6_bug.md

packetstormsecurity.com/files/147065/YzmCMS-3.6-Cross-Site-Scripting.html

www.exploit-db.com/exploits/44405/

0.008 Low

EPSS

Percentile

81.7%

Related for PRION:CVE-2018-7653