Cross Site Scripting (XSS) vulnerability in UserController.php in ThinkCMF version 5.1.5, allows attackers to execute arbitrary code via crafted user_login.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| thinkcmf/thinkcmf(Packagist) | 0 | 5.1.7 | N/A |
CVSS Metrics
