An issue is discovered in baijiacms V4. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Baijiacms
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.7%
\upload\plugins\sys\Install.php in CScms 4.1 has XSS via the site name. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
XSS
PHP
Cscms
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.7%