VYPR

X3.4

by Discuz

CVEs (1)

  • CVE-2018-19464MedNov 22, 2018
    risk 0.31cvss 4.8epss 0.01

    Discuz! X3.4 allows XSS via admin.php because admincp/admincp_setting.php and template\default\common\footer.htm mishandles statcode field from third-party stats code.