Description
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) in the site management office.
Remediation
References
https://github.com/yukino-hiki/CVE/blob/main/3/There%20is%20a%20storage%20type%20xss%20in%20the%20site%20management%20office.md
Related Vulnerabilities
CVE-2020-8137 Vulnerability in npm package uppy
CVE-2022-4375 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2023-39022 Vulnerability in maven package opensymphony:oscore
CVE-2023-25345 Vulnerability in maven package org.webjars.npm:swig
CVE-2023-42276 Vulnerability in maven package cn.hutool:hutool-core