2021-07-09 21:56:07
mitre
PUBLISHED
A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the New Article field under the Article plugin.