Description
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the model management department.
Remediation
References
https://github.com/Rabb1ter/cms/blob/main/There%20is%20a%20stored%20XSS%20in%20the%20model%20management%20department.md
Related Vulnerabilities
CVE-2022-36913 Vulnerability in maven package org.jenkins-ci.plugins:openstack-heat
CVE-2021-23326 Vulnerability in npm package @graphql-tools/git-loader
CVE-2013-2165 Vulnerability in maven package org.richfaces:richfaces
CVE-2015-9243 Vulnerability in npm package hapi
CVE-2016-15011 Vulnerability in maven package be.e_contract.dssp:dssp-client