CVE-2020-18404

An issue was discovered in espcms version P8.18101601. There is a cross site scripting (XSS) vulnerability that allows arbitrary code to be executed via the title parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt