A stored cross-site scripting (XSS) vulnerability in /ucms/index.php?do=list_edit of UCMS 1.4.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the title, key words, description or content text fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ucms project ucms 1.4.7 |