Description
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) via carousel image editing.
Remediation
References
https://github.com/Jarvis-616/cms/blob/master/There%20is%20a%20storage%20type%20XSS%20for%20carousel%20image%20editing.md
Related Vulnerabilities
CVE-2023-26135 Vulnerability in npm package flatnest
CVE-2023-44487 Vulnerability in maven package io.netty:netty-codec-http2
CVE-2021-23348 Vulnerability in npm package portprocesses
CVE-2023-3620 Vulnerability in npm package tarteaucitronjs
CVE-2023-29210 Vulnerability in maven package org.xwiki.platform:xwiki-platform-notifications-ui