CVE-2018-16371

PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: g=Team&m=User&a=index&keyword=, g=Team&m=User_group&a=index&keyword=, g=Team&m=Department&a=index&keyword=, and g=Team&m=Bulletin&a=index&keyword=.
References
Link Resource
https://github.com/lazyphp/PESCMS-TEAM/issues/3 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:pescms:pescms_team:2.2.1:*:*:*:*:*:*:*

Information

Published : 2018-09-03 12:29

Updated : 2018-10-24 02:39


NVD link : CVE-2018-16371

Mitre link : CVE-2018-16371

Products Affected
No products.
CWE