Catfish CMS v4.7.9 allows XSS via the admin/Index/write.html editorValue parameter (aka an article posted by an administrator).Referenceshttps://github.com/xwlrbh/Catfish/issues/2
