Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-22494

Disclosure Date: January 12, 2024 (last updated January 19, 2024)
A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save mobile parameter, which allows remote attackers to inject arbitrary web script or HTML.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0