Find real vulnerabilities before they ship
Vulnerability Database › packagist › CVE-2014-4036
Cross-site scripting (XSS) vulnerability in modules/system/admin.php in ImpressCMS 1.3.6.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a listimg action.