Cross Site Scripting (XSS) vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL.
View the template here CVE-2024-22927.yaml
References:
https://github.com/weng-xianhu/eyoucms/issues/57