Description
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the navigation management department.
Remediation
References
https://github.com/Rabb1ter/cms/blob/main/There%20is%20a%20stored%20XSS%20in%20the%20navigation%20management%20office.md
Related Vulnerabilities
CVE-2016-3088 Vulnerability in maven package org.apache.activemq:apache-activemq
CVE-2019-12041 Vulnerability in maven package org.webjars:remarkable
CVE-2015-1840 Vulnerability in maven package org.webjars.npm:jquery-ujs
CVE-2023-32007 Vulnerability in maven package org.apache.spark:spark-core_2.13
CVE-2017-1000392 Vulnerability in maven package org.jenkins-ci.main:jenkins-war