An issue was discovered in WUZHI CMS 4.1.0. The "Extension Module -> System Announcement" feature has Stored XSS via an announcement.Referenceshttps://github.com/wuzhicms/wuzhicms/issues/136
