po-admin/route.php?mod=post&act=edit in PopojiCMS 2.0.1 allows post[1][content]= stored XSS.
{ "source": "CPE_STRING", "cpe": "cpe:2.3:a:popojicms:popojicms:2.0.1:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "2.0.1" }, { "last_affected": "2.0.1" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-18816.json"