A stored cross-site scripting (XSS) vulnerability in EyouCMS v1.6.4-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Field Title field at /login.php?m=admin&c=Field&a=arctype_add&_ajax=1&lang=cn.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eyoucms eyoucms 1.6.4 |