CVE-2021-31676 Information

Description

A reflected XSS was discovered in PESCMS-V2.3.3. When combined with CSRF in the same file they can cause bigger destruction.

Reference

https://github.com/two-kisses/pescms_vulnerability https://github.com/lazyphp/PESCMS-TEAM/issues/7 https://github.com/RO6OTXX/pescms_vulnerability