Lucene search
K

CVE-2024-22497

🗓️ 23 Jan 2024 00:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 222 Views🌐 WEB

CVE-2024-22497 Cross Site Scripting (XSS) vulnerability in JFinalcms 5.0.

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2024-22497
23 Jan 202420:27
circl
CNNVD
JFinal Cross-Site Scripting Vulnerability
23 Jan 202400:00
cnnvd
Cvelist
CVE-2024-22497
23 Jan 202400:00
cvelist
Github Security Blog
Cross-site Scripting in JFinal
23 Jan 202421:30
github
NVD
CVE-2024-22497
23 Jan 202419:15
nvd
OSV
CVE-2024-22497
23 Jan 202400:00
osv
OSV
GHSA-QH2W-9M7W-HJG2 Cross-site Scripting in JFinal
23 Jan 202421:30
osv
Prion
Cross site scripting
23 Jan 202419:15
prion
RedhatCVE
CVE-2024-22497
23 May 202509:34
redhatcve
Veracode
Cross Site Scripting (XSS)
25 Jan 202406:00
veracode
Rows per page
NVD
ParameterPositionPathDescriptionCWE
passwordquery param/admin/loginCross Site Scripting vulnerability in /admin/login password parameter in JFinalcms 5.0.0 allows attackers to run arbitrary code via crafted URL.CWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 07:11Current
6.1Medium risk
Vulners AI Score6.1
CVSS 3.16.1
EPSS0.00435
SSVC
222