An issue was discovered in OTCMS 3.61. XSS exists in admin/share_switch.php via these parameters: fieldName fieldName2 tabName.
, aka 'Raw Image Extension Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-17079, CVE-2020-17082, CVE-2020-17086.
, aka 'Raw Image Extension Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-17078, CVE-2020-17082, CVE-2020-17086.
, aka 'Raw Image Extension Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-17078, CVE-2020-17079, CVE-2020-17086.