2 matches found
CVE-2023-50100
CVE-2023-50100 affects JFinalcms 5.0.0. The vulnerability is a Cross-Site Scripting (XSS) flaw exposed via the carousel image editing feature, caused by insufficient filtering/escaping of user-supplied data. Impact: an attacker can inject and execute arbitrary scripts in the victim’s browser. Exp...
CVE-2023-50100
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting XSS via carousel image editing...