CVE-2018-20597

CVE-2018-20597

UCMS 1.4.7 has XSS via the dir parameter in an index.php sadmin_fileedit action.

Source: CVE-2018-20597