xxy961216/attack-baijiacmsV4-with-xss

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-16725 ↗	Sep 8, 2018Saturday, 8 September 2018, 15:29	—	4.3 MEDIUM
An issue is discovered in baijiacms V4. XSS exists via the assets/weengine/components/zclip/ZeroClipboard.swf id parameter, aka "Non-standard use of the flash component."