XSS exists in JIZHICMS 1.7.1 via index.php/Wechat/checkWeixin?signature=1&echostr={XSS] to Home/c/WechatController.php.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23643
Reference (s):
- https://github.com/Cherry-toto/jizhicms/issues/29