Multiple Reflected XSS Vulnerabilities in PESCMS Team 2.2.1 via keyword parameter

Multiple Reflected XSS Vulnerabilities in PESCMS Team 2.2.1 via keyword parameter

CVE-2018-16371 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: g=Team&m=User&a=index&keyword=, g=Team&m=User_group&a=index&keyword=, g=Team&m=Department&a=index&keyword=, and g=Team&m=Bulletin&a=index&keyword=.

Learn more about our Cms Pen Testing.