CVE-2018-12339by Jeremyin Security Bulletinson Posted on June 13, 2018 ArticleCMS through 2017-02-19 has XSS via an “add an article” action.