CVE-2021-40910

MEDIUM

PHPCMS <9.6.3 - XSS

Title source: llm

There is a reflective cross-site scripting (XSS) vulnerability in the PHPCMS V9.6.3 management side.

gitee 663 stars

by phpcms · phpwriteup

CVSS v3 6.1

EPSS 0.0024

EPSS Percentile 47.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE

CWE-79

Status published

Products (1)

phpcms/phpcms 9.6.3

Published Jun 15, 2022

Tracked Since Feb 18, 2026