RuoYi v4.7.8 exists to contain a cross-site scripting (XSS) vulnerability via the component /system/notice/.