Lucene search
China National Vulnerability DatabaseCNVD-2023-97732HistoryDec 13, 2023 - 12:00 a.m.
JFinalCMS Cross-Site Scripting Vulnerability (CNVD-2023-9773206)
2023-12-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
jfinalcms
cross-site scripting
vulnerability
model management
web script
html
cnvd-2023-9773206
JFinalCMS is a content management system. JFinalCMS suffers from a cross-site scripting vulnerability that stems from a lack of effective filtering and escaping of user-supplied data in the model management department, which can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a carefully crafted payload.
Related
nvd
nvd
CVE-2023-49486
2023-12-08 15:15:07
cvelist
cvelist
CVE-2023-49486
2023-12-08 00:00:00
prion
prion
Cross site scripting
2023-12-08 15:15:00
osv
osv
Cross-site Scripting in JFinalCMS
2023-12-08 15:30:19
CVE-2023-49486
2023-12-08 15:15:07
github
github
Cross-site Scripting in JFinalCMS
2023-12-08 15:30:19
veracode
veracode
Cross-site Scripting (XSS)
2023-12-13 05:52:22
cve
cve
CVE-2023-49486
2023-12-08 15:15:07