admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page&name=error404 action, a different vulnerability than CVE-2018-10121.Referenceshttps://github.com/bg5sbk/MiniCMS/issues/25
