Vulnerabilities (CVE)

Filtered by vendor Cristopher Shi Subscribe
Filtered by product Php-scms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-5220 1 Cristopher Shi 1 Php-scms 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in templates/default/Admin/Login.html in PHP-SCMS 1.6.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter to index.php.