cpe:/a:dilicms:dilicms:2.4.0 CVE-2018-18210 2018-10-10T12:29:00.437-04:00 2018-11-21T16:03:43.870-05:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2018-11-21T14:25:53.047-05:00 MISC https://github.com/chekun/DiliCMS/issues/59 XSS exists in DiliCMS 2.4.0 via the admin/index.php/setting/site?tab=site_attachment attachment_url parameter.