Description
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the model management department.
Remediation
References
https://github.com/Rabb1ter/cms/blob/main/There%20is%20a%20stored%20XSS%20in%20the%20model%20management%20department.md
Related Vulnerabilities
CVE-2022-23221 Vulnerability in maven package com.h2database:h2
CVE-2023-40810 Vulnerability in maven package org.opencrx:opencrx-core-models
CVE-2022-36917 Vulnerability in maven package org.jenkins-ci.plugins:google-cloud-backup
CVE-2017-16051 Vulnerability in npm package sqliter
CVE-2018-15685 Vulnerability in maven package org.webjars.npm:electron