Lucene search

K
cvelistMitreCVELIST:CVE-2024-22492
HistoryJan 12, 2024 - 12:00 a.m.

CVE-2024-22492

2024-01-1200:00:00
mitre
www.cve.org
jfinalcms
stored
xss
vulnerability
remote attackers
web script
html
contact parameter

0.001 Low

EPSS

Percentile

20.4%

A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save contact parameter, which allows remote attackers to inject arbitrary web script or HTML.

0.001 Low

EPSS

Percentile

20.4%

Related for CVELIST:CVE-2024-22492