CVE-2018-7653
MEDIUM NUCLEIYzmcms - XSS
Title source: ruleDescription
In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter.
Exploits (1)
Nuclei Templates (1)
YzmCMS v3.6 - Cross-Site Scripting
MEDIUMby ritikchaddha
Shodan:
title:"YzmCMS" || http.title:"yzmcms"
FOFA:
title="YzmCMS" || title="yzmcms"
References (3)
Scores
CVSS v3
6.1
EPSS
0.0110
EPSS Percentile
78.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (1)
yzmcms/yzmcms
3.6
Published
Mar 04, 2018
Tracked Since
Feb 18, 2026