CVE-2019-15750

A Cross-Site Scripting (XSS) vulnerability in the blog function in SITOS six Build v6.2.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

References

https://www.contextis.com/en/resources/advisories/cve-2019-15750