Description
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) in the site management office.
Remediation
References
https://github.com/yukino-hiki/CVE/blob/main/3/There%20is%20a%20storage%20type%20xss%20in%20the%20site%20management%20office.md
Related Vulnerabilities
CVE-2020-28502 Vulnerability in npm package xmlhttprequest-ssl
CVE-2013-6372 Vulnerability in maven package org.jenkins-ci.plugins:subversion
CVE-2022-36033 Vulnerability in maven package org.jsoup:jsoup
CVE-2020-28052 Vulnerability in maven package org.bouncycastle:bcprov-jdk15to18
CVE-2023-29523 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore