CVE-2022-35509 Information

Description

An issue was discovered in EyouCMS 1.5.8. There is a Storage XSS vulnerability that can allows an attacker to execute arbitrary Web scripts or HTML by injecting a special payload via the title parameter in the foreground contribution allowing the attacker to obtain sensitive information.

Reference

https://github.com/eyoucms/eyoucms/issues/25