2 matches found
CVE-2024-22496
creationtimestamp| type| source ---|---|--- 2024-01-23 18:26:36+00:00| seen| https://t.me/ctinow/172209 2024-02-17 11:06:49+00:00| seen| https://t.me/ctinow/186864...
CVE-2024-22496
CVE-2024-22496 is an XSS vulnerability affecting JFinalcms 5.0.0. The issue stems from improper handling of the /admin/login username parameter, enabling injection of arbitrary JavaScript code. Connected sources corroborate the vulnerability as Cross-site Scripting in JFinalcms with the same vect...