CVE-2024-22494 | JFinalcms 5.0.0 /gusetbook/save mobile cross site scripting

Posted by Angelo Barbosa | Jan 12, 2024 | CVE

A vulnerability has been found in JFinalcms 5.0.0 and classified as problematic. This vulnerability affects unknown code of the file /gusetbook/save. The manipulation of the argument mobile leads to cross site scripting.

This vulnerability was named CVE-2024-22494. The attack can be initiated remotely. There is no exploit available.

CVE-2024-22494 | JFinalcms 5.0.0 /gusetbook/save mobile cross site scripting

Related Posts

CVE-2024-8921 | Zita Elementor Site Library Plugin up to 1.6.3 on WordPress SVG File Upload cross site scripting

CVE-2023-46048 | tex-live 944e257 Config File cmr10.pfb null pointer dereference

CVE-2024-47162 | JetBrains YouTrack up to 2024.2.34646 Imports Page insufficiently protected credentials

CVE-2023-6846 | File Manager Pro Plugin up to 8.3.4 on WordPress unrestricted upload