CNNVD-202601-2778 Information

CNNVD ID

CNNVD-202601-2778

Related CVE

CVE-2021-47834

• CNNVD Published: 2026-01-16

Description (Chinese)

Schlix CMS是Schlix公司的一套基于PHP和MySQL的开源内容管理系统（CMS）。 Schlix CMS 2.2.6-6版本存在跨站脚本漏洞，该漏洞源于类别标题存在存储型跨站脚本，可能导致执行恶意脚本。

Description (English)

Schlix CMS is an open-source content management system (CMS) based on PHP and MySQL for Schlix. The Schlix CMS 2.2.6-6 version has a cross-site script loophole, which stems from the existence of a stored cross-site script in the category title, which may lead to the execution of malicious scripts.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Schlix

Published

2026-01-16

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/49837 https://www.schlix.com/ https://www.vulncheck.com/advisories/schlix-cms-title-persistent-cross-site-scripting-authenticated

Patch

https://www.schlix.com/